CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-3916

Information disclosure vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.01.00.05 allows an remote, unauthenticated attacker to retrieve the value of the password salt by simply requesting an API URL in a web browser (e.g. /api).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 77.4%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://www.tenable.com/security/research/tra-2019-17
https://www.tenable.com/security/research/tra-2019-17

Products affected by CVE-2019-3916

Verizon » Fios Quantum Gateway G1100 » Version: N/A

cpe:2.3:h:verizon:fios_quantum_gateway_g1100:-
Verizon » Fios Quantum Gateway G1100 Firmware » Version: 02.01.00.05

cpe:2.3:o:verizon:fios_quantum_gateway_g1100_firmware:02.01.00.05

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-3916

Products

Pricing

Contact Us