cbcvebase.

Hongdian H8951-4G-Esp vulnerabilities

9 known vulnerabilities affecting hongdian/h8951-4g-esp.

Total CVEs
9
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL3HIGH5MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2021-28151P1HIGHCVSS 8.8ExploitedPoCfixed in 23102711492021-05-06
CVE-2021-28151 [HIGH] CWE-78 CVE-2021-28151: Hongdian H8922 3.0.5 devices allow OS command injection via shell metacharacters into the ip-address Hongdian H8922 3.0.5 devices allow OS command injection via shell metacharacters into the ip-address (aka Destination) field to the tools.cgi ping command, which is accessible with the username guest and password guest.
nvd
CVE-2023-49253P2CRITICALCVSS 9.8fixed in 23102711492024-01-12
CVE-2023-49253 [CRITICAL] CWE-798 CVE-2023-49253: Root user password is hardcoded into the device and cannot be changed in the user interface. Root user password is hardcoded into the device and cannot be changed in the user interface.
nvd
CVE-2023-49257P2HIGHCVSS 8.8fixed in 23102711492024-01-12
CVE-2023-49257 [HIGH] CWE-732 CVE-2023-49257: An authenticated user is able to upload an arbitrary CGI-compatible file using the certificate uploa An authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility and execute it with the root user privileges.
nvd
CVE-2023-49255P3CRITICALCVSS 9.8fixed in 23102711492024-01-12
CVE-2023-49255 [CRITICAL] CWE-306 CVE-2023-49255: The router console is accessible without authentication at "data" field, and while a user needs to b The router console is accessible without authentication at "data" field, and while a user needs to be logged in in order to modify the configuration, the session state is shared. If any other user is currently logged in, the anonymous user can execute commands in the context of the authenticated one. If the logged in user has administrative privil
nvd
CVE-2023-49262P3CRITICALCVSS 9.8fixed in 23102711492024-01-12
CVE-2023-49262 [CRITICAL] CWE-190 CVE-2023-49262: The authentication mechanism can be bypassed by overflowing the value of the Cookie "authentication" The authentication mechanism can be bypassed by overflowing the value of the Cookie "authentication" field, provided there is an active user session.
nvd
CVE-2023-49256P3HIGHCVSS 7.5fixed in 23102711492024-01-12
CVE-2023-49256 [HIGH] CWE-321 CVE-2023-49256: It is possible to download the configuration backup without authorization and decrypt included passw It is possible to download the configuration backup without authorization and decrypt included passwords using hardcoded static key.
nvd
CVE-2023-49259P3HIGHCVSS 7.5fixed in 23102711492024-01-12
CVE-2023-49259 [HIGH] CWE-341 CVE-2023-49259: The authentication cookies are generated using an algorithm based on the username, hardcoded secret The authentication cookies are generated using an algorithm based on the username, hardcoded secret and the up-time, and can be guessed in a reasonable time.
nvd
CVE-2023-49261P3HIGHCVSS 7.5fixed in 23102711492024-01-12
CVE-2023-49261 [HIGH] CWE-201 CVE-2023-49261: The "tokenKey" value used in user authorization is visible in the HTML source of the login page. The "tokenKey" value used in user authorization is visible in the HTML source of the login page.
nvd
CVE-2023-49258P4MEDIUMCVSS 6.1fixed in 23102711492024-01-12
CVE-2023-49258 [MEDIUM] CWE-79 CVE-2023-49258: User browser may be forced to execute JavaScript and pass the authentication cookie to the attacker User browser may be forced to execute JavaScript and pass the authentication cookie to the attacker leveraging the XSS vulnerability located at "/gui/terminal_tool.cgi" in the "data" parameter.
nvd
Hongdian H8951-4G-Esp vulnerabilities | cvebase