CVE-2014-9596

Panasonic Arbitrator Back-End Server (BES) MK 2.0 VPU before 9.3.1 build 4.08.003.0, when USB Wi-Fi or Direct LAN is enabled, and MK 3.0 VPU before 9.3.1 build 5.06.000.0, when Embedded Wi-Fi or Direct LAN is enabled, does not use encryption, which allows remote attackers to obtain sensitive information by sniffing the network for client-server traffic, as demonstrated by Active Directory credential information.

Published : 2015-01-15 23:59 Updated : 2015-01-16 18:31

4.3
CVSS Score More info
Score 4.3 / 10
4.3
Vendor Product Version URI
Panasonic Arbitrator Back-end Server Mk 2.0 Vpu Firmware 9.3.1 cpe:/o:panasonic:arbitrator_back-end_server_mk_2.0_vpu_firmware:9.3.1
Panasonic Arbitrator Back-end Server Mk 3.0 Vpu - cpe:/h:panasonic:arbitrator_back-end_server_mk_3.0_vpu:-
Panasonic Arbitrator Back-end Server Mk 2.0 Vpu - cpe:/h:panasonic:arbitrator_back-end_server_mk_2.0_vpu:-
Panasonic Arbitrator Back-end Server Mk 3.0 Vpu Firmware 9.3.1 cpe:/o:panasonic:arbitrator_back-end_server_mk_3.0_vpu_firmware:9.3.1
  1. Panasonic (4) Search CVE
    1. Arbitrator Back-end Server Mk 3.0 Vpu Firmware (1) Search CVE
      1. 9.3.1
    2. Arbitrator Back-end Server Mk 3.0 Vpu (1) Search CVE
      1. -
    3. Arbitrator Back-end Server Mk 2.0 Vpu Firmware (1) Search CVE
      1. 9.3.1
    4. Arbitrator Back-end Server Mk 2.0 Vpu (1) Search CVE
      1. -

CWE

ID Name Description Links
CWE-310 Cryptographic Issues Weaknesses in this category are related to the use of cryptography. CVE

History of changes

Date Event
2015-01-15 23:59

New CVE