Описание
Verizon 4G LTE Network Extender GA4.38 - V0.4.038.2131 utilizes a weak default admin password generation algorithm which generates passwords that are accessible to unauthenticated attackers via the webUI login page.
Ссылки
- Vendor Advisory
- ExploitThird Party Advisory
- Vendor Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:o:verizon:4g_lte_network_extender_firmware:0.4.038.2131:*:*:*:*:*:*:*
cpe:2.3:o:verizon:4g_lte_network_extender_firmware:ga4.38:*:*:*:*:*:*:*
cpe:2.3:h:verizon:4g_lte_network_extender:-:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00695
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-521
Связанные уязвимости
CVSS3: 7.5
github
около 3 лет назад
Verizon 4G LTE Network Extender GA4.38 - V0.4.038.2131 utilizes a weak default admin password generation algorithm which generates passwords that are accessible to unauthenticated attackers via the webUI login page.
EPSS
Процентиль: 71%
0.00695
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-521