Vulnerability Details : CVE-2011-4507
The D-Link DIR-685 router, when certain WPA and WPA2 configurations are used, does not maintain an encrypted wireless network during transfer of a large amount of network traffic, which allows remote attackers to obtain sensitive information or bypass authentication via a Wi-Fi device.
Exploit prediction scoring system (EPSS) score for CVE-2011-4507
Probability of exploitation activity in the next 30 days: 0.24%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 61 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2011-4507
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2011-4507
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-4507
-
http://www.kb.cert.org/vuls/id/924307
VU#924307 - D-Link DIR-685 Xtreme N storage router WPA/WPA2 encryption failureUS Government Resource
Products affected by CVE-2011-4507
- cpe:2.3:h:dlink:dir-685:*:*:*:*:*:*:*:*