Linksys Wag54Gs vulnerabilities

4 known vulnerabilities affecting linksys/wag54gs.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2007-6709HIGHCVSS 7.5≤ firmware_1.01.032008-03-13
CVE-2007-6709 [HIGH] CWE-264 CVE-2007-6709: The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as i The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access.
nvd
CVE-2007-6708MEDIUMCVSS 4.3≤ firmware_1.01.032008-03-13
CVE-2007-6708 [MEDIUM] CWE-352 CVE-2007-6708: Multiple cross-site request forgery (CSRF) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G A Multiple cross-site request forgery (CSRF) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by (1) a Restore Factory Defaults action using the mtenRestore parameter t
nvd
CVE-2007-6707MEDIUMCVSS 4.3≤ firmware_1.01.032008-03-13
CVE-2007-6707 [MEDIUM] CVE-2007-6707: Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gat Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574.
nvd
CVE-2007-3574MEDIUMCVSS 4.3PoCv1.00.062007-07-05
CVE-2007-3574 [MEDIUM] CWE-79 CVE-2007-3574: Multiple cross-site scripting (XSS) vulnerabilities in setup.cgi on the Cisco Linksys WAG54GS Wirele Multiple cross-site scripting (XSS) vulnerabilities in setup.cgi on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.00.06 firmware allow remote attackers to inject arbitrary web script or HTML via the (1) c4_trap_ip_, (2) devname, (3) snmp_getcomm, or (4) snmp_setcomm parameter.
nvd