Improper Access Restriction in Broadcom Ltd PIPA C211 rev2 Web Interface

Improper Access Restriction in Broadcom Ltd PIPA C211 rev2 Web Interface

CVE-2014-2046 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:C/A:C

cgi-bin/rpcBridge in the web interface 1.1 on Broadcom Ltd PIPA C211 rev2 does not properly restrict access, which allows remote attackers to (1) obtain credentials and other sensitive information via a certain request to the config.getValuesHashExcludePaths method or (2) modify the firmware via unspecified vectors.

Learn more about our Web App Pen Testing.