Strix
26.1K

CVE-2013-2310

UnknownEPSS 0.73%

Last modified

CVE-2013-2310 is a vulnerability of currently unknown severity. SoftBank Wi-Fi Spot Configuration Software, as used on SoftBank SHARP 3G handsets, SoftBank Panasonic 3G handsets, SoftBank NEC 3G handsets, SoftBank Samsung 3G handsets, SoftBank mobile Wi-Fi routers, SoftBank Android smartphones with the Wi-Fi application before 1.7.1, SoftBank Windows Mobile smartphones with the WISPrClient application before 1.3.1, SoftBank Disney Mobile Android smartphones with the Wi-Fi application before 1.7.1, and WILLCOM Android smartphones with the Wi-Fi application before 1.7.1, does not properly connect to access points, which allows remote attackers to obtain sensitive information by leveraging access to an 802.11 network.. EPSS estimates a 0.73% chance of exploitation in the next 30 days.

Description

SoftBank Wi-Fi Spot Configuration Software, as used on SoftBank SHARP 3G handsets, SoftBank Panasonic 3G handsets, SoftBank NEC 3G handsets, SoftBank Samsung 3G handsets, SoftBank mobile Wi-Fi routers, SoftBank Android smartphones with the Wi-Fi application before 1.7.1, SoftBank Windows Mobile smartphones with the WISPrClient application before 1.3.1, SoftBank Disney Mobile Android smartphones with the Wi-Fi application before 1.7.1, and WILLCOM Android smartphones with the Wi-Fi application before 1.7.1, does not properly connect to access points, which allows remote attackers to obtain sensitive information by leveraging access to an 802.11 network.

Metrics

EPSS Probability
0.73%

49.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
SoftbankWi-Fi Spot Configuration SoftwareAll versions
SoftbankMobile Wi-Fi Router101sb
SoftbankMobile Wi-Fi Router102hw
SoftbankMobile Wi-Fi Router102z
SoftbankNec 3g Handset001n
SoftbankNec 3g Handset931n
SoftbankNec 3g Handset940n
SoftbankPanasonic 3g Handset001p
SoftbankPanasonic 3g Handset941p
SoftbankPanasonic 3g Handset942p
SoftbankSamsung 3g Handset941sc
SoftbankSharp 3g Handset001n
SoftbankSharp 3g Handset001p
SoftbankSharp 3g Handset002sh
SoftbankSharp 3g Handset004sh
SoftbankSharp 3g Handset004shp3
SoftbankSharp 3g Handset931n
SoftbankSharp 3g Handset940n
SoftbankSharp 3g Handset940sh
SoftbankSharp 3g Handset941p
SoftbankSharp 3g Handset941sc
SoftbankSharp 3g Handset941sh
SoftbankSharp 3g Handset942p
SoftbankSharp 3g Handset943sh
SoftbankSharp 3g Handset944sh
SoftbankSharp 3g Handset945sh
SoftbankSharp 3g Handset945shg
SoftbankWi-Fi Application<= 1.7.0
SoftbankAndroid Smartphone001dl
SoftbankAndroid Smartphone001ht
SoftbankAndroid Smartphone003p
SoftbankAndroid Smartphone003sh
SoftbankAndroid Smartphone003z
SoftbankAndroid Smartphone005sh
SoftbankAndroid Smartphone006sh
SoftbankAndroid Smartphone007hw
SoftbankAndroid Smartphone007sh
SoftbankAndroid Smartphone008z
SoftbankAndroid Smartphone009sh
SoftbankAndroid Smartphone009z
SoftbankAndroid Smartphone101dl
SoftbankAndroid Smartphone101f
SoftbankAndroid Smartphone101k
SoftbankAndroid Smartphone101n
SoftbankAndroid Smartphone101p
SoftbankAndroid Smartphone101sh
SoftbankAndroid Smartphone102p
SoftbankAndroid Smartphone102sh
SoftbankAndroid Smartphone103sh
SoftbankAndroid Smartphone104sh

Showing 50 of 70 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2013-2310?
SoftBank Wi-Fi Spot Configuration Software, as used on SoftBank SHARP 3G handsets, SoftBank Panasonic 3G handsets, SoftBank NEC 3G handsets, SoftBank Samsung 3G handsets, SoftBank mobile Wi-Fi routers, SoftBank Android smartphones with the Wi-Fi application before 1.7.1, SoftBank Windows Mobile smartphones with the WISPrClient application before 1.3.1, SoftBank Disney Mobile Android smartphones with the Wi-Fi application before 1.7.1, and WILLCOM Android smartphones with the Wi-Fi application before 1.7.1, does not properly connect to access points, which allows remote attackers to obtain sensitive information by leveraging access to an 802.11 network.
How severe is CVE-2013-2310?
Severity scoring for CVE-2013-2310 is pending analysis. The EPSS model estimates a 0.73% probability of exploitation in the next 30 days.
How do I fix CVE-2013-2310?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2013-2310?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST