cbcvebase.

Compal Broadband Networks Cg6640E Wireless Gateway vulnerabilities

5 known vulnerabilities affecting compal_broadband_networks/cg6640e_wireless_gateway.

Total CVEs
5
CISA KEV
0
Public exploits
5
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2014-8656P2CRITICALCVSS 10.0PoCv1.02014-11-06
CVE-2014-8656 [CRITICAL] CWE-255 CVE-2014-8656: The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3. The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH have a default password of (1) admin for the admin account and (2) compalbn for the root account, which makes it easier for remote attackers to obtain access to certain sensitive information via unspecified vectors.
nvd
CVE-2014-8655P3MEDIUMCVSS 5.0PoCv1.02014-11-06
CVE-2014-8655 [MEDIUM] CWE-264 CVE-2014-8655: The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3. The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData cookie in a request to (1) CmgwWirelessSecurity.xml, (2) DocsisConfigFile.xml, or (3) CmgwBasicSetup.xml i
nvd
CVE-2014-8654P3MEDIUMCVSS 6.8PoCv1.02014-11-06
CVE-2014-8654 [MEDIUM] CWE-352 CVE-2014-8654: Multiple cross-site request forgery (CSRF) vulnerabilities in Compal Broadband Networks (CBN) CH6640 Multiple cross-site request forgery (CSRF) vulnerabilities in Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway hardware 1.0 with firmware CH6640-3.5.11.7-NOSH allow remote attackers to hijack the authentication of administrators for requests that (1) have unspecified impact on DDNS configuration via a request to basicDDNS.html, (2)
nvd
CVE-2014-8657P4MEDIUMCVSS 5.0PoCv1.02014-11-06
CVE-2014-8657 [MEDIUM] CWE-16 CVE-2014-8657: The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3. The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to cause a denial of service (disconnect all wifi clients) via a request to wirelessChannelStatus.html.
nvd
CVE-2014-8653P4MEDIUMCVSS 4.3PoCv1.02014-11-06
CVE-2014-8653 [MEDIUM] CWE-79 CVE-2014-8653: Cross-site scripting (XSS) vulnerability in Compal Broadband Networks (CBN) CH6640E and CG6640E Wire Cross-site scripting (XSS) vulnerability in Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote attackers to inject arbitrary web script or HTML via the userData cookie.
nvd
Compal Broadband Networks Cg6640E Wireless Gateway vulnerabilities | cvebase