Chinamobileltd Gpn2.4P21-C-Cn Firmware vulnerabilities
5 known vulnerabilities affecting chinamobileltd/gpn2.4p21-c-cn_firmware.
Total CVEs
5
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH3
Vulnerabilities
Page 1 of 1
CVE-2019-6279P2HIGHCVSS 8.8PoCvw2001en-002019-03-21
CVE-2019-6279 [HIGH] CVE-2019-6279: ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices with firmware W2001EN-00 have an Incorrect Ac
ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices with firmware W2001EN-00 have an Incorrect Access Control vulnerability via the cgi-bin/webproc?getpage=html/index.html subpage=wlsecurity URI, allowing an Attacker to change the Wireless Security Password.
nvd
CVE-2019-6282P3HIGHCVSS 8.8PoCvw2001en-002019-03-21
CVE-2019-6282 [HIGH] CWE-352 CVE-2019-6282: ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices with firmware W2001EN-00 have CSRF via the cg
ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices with firmware W2001EN-00 have CSRF via the cgi-bin/webproc?getpage=html/index.html subpage=wlsecurity URI, allowing an Attacker to change the Wireless Security Password.
nvd
CVE-2020-18330P3CRITICALCVSS 9.1vw2000en-012023-01-26
CVE-2020-18330 [CRITICAL] CWE-22 CVE-2020-18330: An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model GPN2.4
An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01(hardware platform Gpn2.4P21-C_WIFI-V0.05), allows attackers to gain access to the configuration interface.
nvd
CVE-2020-18331P3CRITICALCVSS 9.1vw2000en-012023-01-26
CVE-2020-18331 [CRITICAL] CWE-22 CVE-2020-18331: Directory traversal vulnerability in ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running th
Directory traversal vulnerability in ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01(hardware platform Gpn2.4P21-C_WIFI-V0.05), via the getpage parameter to /cgi-bin/webproc.
nvd
CVE-2019-1010136P3HIGHCVSS 7.5vw2001en-002019-07-19
CVE-2019-1010136 [HIGH] CWE-306 CVE-2019-1010136: ChinaMobile GPN2.4P21-C-CN W2001EN-00 is affected by: Incorrect Access Control - Unauthenticated Rem
ChinaMobile GPN2.4P21-C-CN W2001EN-00 is affected by: Incorrect Access Control - Unauthenticated Remote Reboot. The impact is: PLC Wireless Router's are vulnerable to an unauthenticated remote reboot due. The component is: Reboot settings are available to unauthenticated users instead of only authenticaed users. The attack vector is: Remote.
nvd