CVE-2013-5038

HOT HOTBOX <2.1.11 - Auth Bypass

Title source: llm

Description

The HOT HOTBOX router with software 2.1.11 allows remote attackers to bypass authentication by configuring a source IP address that had previously been used for an authenticated session.

Exploits (1)

exploitdb WORKING POC

webappshardware

https://www.exploit-db.com/exploits/29518

View on exploitdb

References (2)

[Exploit] http://packetstormsecurity.com/files/123901/HOTBOX-2.1.11-CSRF-Traversal-Denial-Of-Service.html

[Exploit] http://www.youtube.com/watch?v=CPlT09ZIj48

Scores

EPSS 0.0100

EPSS Percentile 76.7%

Classification

CWE

CWE-287

Status draft

Affected Products (2)

hot/hotbox_router_firmware

hot/hotbox_router

Timeline

Published Dec 30, 2013

Tracked Since Feb 18, 2026