cbcvebase.

Solax Pocket Wifi 3 Firmware vulnerabilities

3 known vulnerabilities affecting solax/pocket_wifi_3_firmware.

Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2023-35835P2CRITICALCVSS 9.8≥ 3.0.0, ≤ 3.009.03_202305042024-01-23
CVE-2023-35835 [CRITICAL] CVE-2023-35835: An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. The device provides a WiFi access p An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. The device provides a WiFi access point for initial configuration. The WiFi network provided has no network authentication (such as an encryption key) and persists permanently, including after enrollment and setup is complete. The WiFi network serves a web-based configuration utility, as wel
nvd
CVE-2023-35837P2CRITICALCVSS 9.8≥ 3.0.0, ≤ 3.009.03_202305042024-01-23
CVE-2023-35837 [CRITICAL] CVE-2023-35837: An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. Authentication for web interface is An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. Authentication for web interface is completed via an unauthenticated WiFi AP. The administrative password for the web interface has a default password, equal to the registration ID of the device. This same registration ID is used as the WiFi SSID name. No routine is in place to force a chang
nvd
CVE-2023-35836P4MEDIUMCVSS 6.5≥ 3.0.0, ≤ 3.009.03_202305042024-01-23
CVE-2023-35836 [MEDIUM] CWE-863 CVE-2023-35836: An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. An attacker within RF range can obt An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. An attacker within RF range can obtain a cleartext copy of the network configuration of the device, including the Wi-Fi PSK, during device setup and reconfiguration. Upon success, the attacker is able to further infiltrate the target's Wi-Fi networks.
nvd
Solax Pocket Wifi 3 Firmware vulnerabilities | cvebase