CVE-2015-7279

MEDIUM

Amped Wireless R10000 <2.5.2.11 - Info Disclosure

Title source: llm

Description

Amped Wireless R10000 devices with firmware 2.5.2.11 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value.

References (2)

[Third Party Advisory, US Government Resource] https://www.kb.cert.org/vuls/id/763576

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/78818

Scores

CVSS v3 5.3

EPSS 0.0107

EPSS Percentile 77.4%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Classification

Status draft

Affected Products (1)

ampedwireless/r10000_firmware

Timeline

Published Dec 31, 2015

Tracked Since Feb 18, 2026