Vulnerability Details : CVE-2010-2363
The IPv6 Unicast Reverse Path Forwarding (RPF) implementation on the SEIL/X1, SEIL/X2, and SEIL/B1 routers with firmware 1.00 through 2.73, when strict mode is used, does not properly drop packets, which might allow remote attackers to bypass intended access restrictions via a spoofed IP address.
Exploit prediction scoring system (EPSS) score for CVE-2010-2363
Probability of exploitation activity in the next 30 days: 0.36%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 69 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-2363
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:N |
8.6
|
4.9
|
NIST |
CWE ids for CVE-2010-2363
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2010-2363
-
http://www.seil.jp/seilseries/security/2010/a00875.php
IPv6 Unicast RPF 機能の脆弱性Vendor Advisory
-
http://jvn.jp/en/jp/JVN12683004/index.html
JVN#12683004: SEIL/X Series and SEIL/B1 IPv6 Unicast RPF vulnerability
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/61382
SEIL routers IPv6 spoofing CVE-2010-2363 Vulnerability Report
-
http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000032.html
JVNDB-2010-000032 - JVN iPedia
Products affected by CVE-2010-2363
- cpe:2.3:a:iij:seil\/x1_firmware:2.42:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.50:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.40:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.41:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.51:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.30:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.52:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.31:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.32:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.61:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.60:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.63:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.62:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.22:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.30:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.20:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.72:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.70:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.20:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.21:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.44:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.10:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:2.73:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.10:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.11:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.40:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x1_firmware:1.43:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.40:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.41:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.42:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.50:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.51:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.30:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.52:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.44:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.00:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.31:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.32:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.61:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.60:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.20:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.10:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.22:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.30:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.63:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.62:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.20:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.21:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.43:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.72:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:2.70:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.10:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.11:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.40:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/x2_firmware:1.41:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.41:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.42:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.40:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.50:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.51:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.30:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.72:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.70:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:1.00:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.52:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.10:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.01:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.61:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.60:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.20:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.63:*:*:*:*:*:*:*
- cpe:2.3:a:iij:seil\/b1_firmware:2.62:*:*:*:*:*:*:*