Vulnerability Details : CVE-2007-2334
Nortel VPN Router (aka Contivity) 1000, 2000, 4000, and 5000 before 5_05.149, 5_05.3xx before 5_05.304, and 6.x before 6_05.140 has two template HTML files lacking certain verification tags, which allows remote attackers to access the administration interface and change the device configuration via certain requests.
Exploit prediction scoring system (EPSS) score for CVE-2007-2334
Probability of exploitation activity in the next 30 days: 3.31%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 91 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2007-2334
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2007-2334
Products affected by CVE-2007-2334
- cpe:2.3:h:nortel:contivity:1000_vpn_switch:*:*:*:*:*:*:*
- cpe:2.3:h:nortel:contivity:2000_vpn_switch:*:*:*:*:*:*:*
- cpe:2.3:h:nortel:contivity:4000_vpn_switch:*:*:*:*:*:*:*
- cpe:2.3:h:nortel:vpn_router_5000:*:*:*:*:*:*:*:*