CVE-2022-3681
First published: Fri Oct 27 2023(Updated: )
A vulnerability has been identified in the MR2600 router v1.0.18 and earlier that could allow an attacker within range of the wireless network to successfully brute force the WPS pin, potentially allowing them unauthorized access to a wireless network.
Credit: psirt@lenovo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Motorola MR2600 | <=1.0.18 | |
| Motorola MR2600 |
Remedy
Upgrade MR2600 router to Software Version v1.0.22.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this MR2600 router vulnerability?
The vulnerability ID for this MR2600 router vulnerability is CVE-2022-3681.
What is the severity of CVE-2022-3681?
The severity of CVE-2022-3681 is medium with a CVSS score of 6.5.
What is the affected software for CVE-2022-3681?
The affected software for CVE-2022-3681 is the Motorola MR2600 router version 1.0.18 and earlier.
How does CVE-2022-3681 allow unauthorized access to a wireless network?
CVE-2022-3681 allows an attacker within range of the wireless network to successfully brute force the WPS pin, potentially allowing them unauthorized access.
Is there a fix available for CVE-2022-3681?
To fix CVE-2022-3681, it is recommended to update to a version of the MR2600 router higher than 1.0.18.
- collector/nvd-api
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/event
- agent/type
- agent/remedy
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/motorola
- canonical/motorola mr2600
- version/motorola mr2600/1.0.18