CVE-2011-4502: OS Command Injection
First published: Tue Nov 22 2011(Updated: )
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitecom WL-153 with firmware before 1.39, and Sweex LB000021 with firmware 3.15 allows remote attackers to execute arbitrary commands via shell metacharacters.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Edimax BR-6104K | =3.21 | |
| Edimax BR-6104K Router Firmware | ||
| Canyon-Tech CN-WF512 | =1.83 | |
| Canyon-Tech CN-WF514 | =2.08 | |
| Canyon-tech Cn-wf512 Router Firmware | ||
| Canyon-tech Cn-wf514 Router Firmware | ||
| Edimax 6114Wg | =1.83 | |
| Edimax 6114Wg | =2.08 | |
| Edimax 6114wg Router Firmware | ||
| Sitecom WL-153 | =1.31 | |
| Sitecom WL-153 | =1.34 | |
| Sitecom WL-153 router firmware | ||
| Sweex LB000021 Router | =3.15 | |
| Sweex LB000021 Router |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2011-4502?
The severity of CVE-2011-4502 is classified as medium risk due to potential remote code execution vulnerabilities.
How do I fix CVE-2011-4502?
To fix CVE-2011-4502, update your router firmware to the latest version provided by the manufacturer.
Which devices are affected by CVE-2011-4502?
CVE-2011-4502 affects devices including Edimax BR-6104K, Canyon-Tech CN-WF512, Sitecom WL-153, and Sweex LB000021 with specific firmware versions.
Can CVE-2011-4502 be exploited remotely?
Yes, CVE-2011-4502 can be exploited remotely, allowing attackers to potentially execute arbitrary code on the device.
What are the potential impacts of CVE-2011-4502?
The potential impacts of CVE-2011-4502 include unauthorized access, data breaches, and compromised device functionality.
- collector/nvd-historical
- agent/type
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/edimax
- canonical/edimax br-6104k
- version/edimax br-6104k/3.21
- canonical/edimax br-6104k router firmware
- vendor/canyon-tech
- canonical/canyon-tech cn-wf512
- version/canyon-tech cn-wf512/1.83
- canonical/canyon-tech cn-wf514
- version/canyon-tech cn-wf514/2.08
- canonical/canyon-tech cn-wf512 router firmware
- canonical/canyon-tech cn-wf514 router firmware
- canonical/edimax 6114wg
- version/edimax 6114wg/1.83
- version/edimax 6114wg/2.08
- canonical/edimax 6114wg router firmware
- vendor/sitecom
- canonical/sitecom wl-153
- version/sitecom wl-153/1.31
- version/sitecom wl-153/1.34
- canonical/sitecom wl-153 router firmware
- vendor/sweex
- canonical/sweex lb000021 router
- version/sweex lb000021 router/3.15