CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

cgi-bin/rpcBridge in the web interface 1.1 on Broadcom Ltd PIPA C211 rev2 does not properly restrict access, which allows remote attackers to (1) obtain credentials and other sensitive information via a certain request to the config.getValuesHashExcludePaths method or (2) modify the firmware via unspecified vectors.

Product Status

Learn more

Information not provided

References 2 Total

https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-2046/
external site
seclists.org: 20140513 CVE-2014-2046 - Unauthenticated Credential And Configuration Retrieval In Broadcom Ltd PIPA C211
external site
mailing-list

Updated: 2024-08-06

This container includes required additional information provided by the CVE Program for this vulnerability.

References 2 Total

https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-2046/
external site
x_transferred
seclists.org: 20140513 CVE-2014-2046 - Unauthenticated Credential And Configuration Retrieval In Broadcom Ltd PIPA C211
external site
mailing-listx_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: MITRE Corporation

Description

Product Status

References 2 Total

CVE Program

References 2 Total