Fiberhome Hg6245d Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Fiberhome Hg6245d Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (40)
CVE-2021-27171 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to start a Linux telnetd as root on port 26/tcp by…
CVE-2021-27172 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. A hardcoded GEPON password for root is defined inside…
CVE-2021-27141 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. Credentials in /fhconf/umconfig.txt are obfuscated via XOR with the…
CVE-2021-27143 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded user / user1234 credentials for…
CVE-2021-27144 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded f~i!b@e#r$h%o^m*esuperadmin /…
CVE-2021-27145 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / lnadmin credentials for…
CVE-2021-27177 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to bypass authentication by sending the decoded value…
CVE-2021-27146 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / CUadmin credentials for…
CVE-2021-27147 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / admin credentials for an…
CVE-2021-27148 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded telecomadmin / nE7jA%5m…
CVE-2021-27149 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded adminpldt /…
CVE-2021-27150 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded gestiontelebucaramanga /…
CVE-2021-27151 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded rootmet / m3tr0r00t credentials…
CVE-2021-27152 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded awnfibre / fibre@dm!n…
CVE-2021-27153 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded trueadmin / admintrue…
CVE-2021-27154 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / G0R2U1P2ag credentials…
CVE-2021-27155 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / 3UJUh2VemEfUtesEchEC2d2e…
CVE-2021-27156 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains credentials for an ISP that equal the last…
CVE-2021-27157 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / 888888 credentials for…
CVE-2021-27158 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded L1vt1m4eng / 888888 credentials…
CVE-2021-27159 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded useradmin / 888888 credentials…
CVE-2021-27160 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded user / 888888 credentials for an…
CVE-2021-27161 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / 1234 credentials for an…
CVE-2021-27162 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded user / tattoo@home credentials…
CVE-2021-27163 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / tele1234 credentials for…
CVE-2021-27164 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / aisadmin credentials for…
CVE-2021-27165 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The telnet daemon on port 23/tcp can be abused with the gpon/gpon…
CVE-2021-27166 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. The password for the enable command is gpon.
CVE-2021-27167 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. There is a password of four hexadecimal characters for the admin…
CVE-2021-27168 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. There is a 6GFJdY4aAuUKJjdtSn7d password for the rdsadmin account.
CVE-2021-27170 — CVSS 9.8 (critical): An issue was discovered on FiberHome HG6245D devices through RP2613. By default, there are no firewall rules for IPv6 connectivity…
CVE-2021-27179 — CVSS 7.5 (high): An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to crash the telnet daemon by sending a certain 0a 65…
CVE-2021-27140 — CVSS 7.5 (high): An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to find passwords and authentication cookies stored in…
CVE-2021-27142 — CVSS 7.5 (high): An issue was discovered on FiberHome HG6245D devices through RP2613. The web management is done over HTTPS, using a hardcoded private key…
CVE-2021-27173 — CVSS 7.5 (high): An issue was discovered on FiberHome HG6245D devices through RP2613. There is a telnet?enable=0&key=calculated(BR0_MAC) backdoor API…
CVE-2021-27174 — CVSS 7.5 (high): An issue was discovered on FiberHome HG6245D devices through RP2613. wifi_custom.cfg has cleartext passwords and 0644 permissions.
CVE-2021-27175 — CVSS 7.5 (high): An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl_2g.cfg has cleartext passwords and 0644 permissions.
CVE-2021-27176 — CVSS 7.5 (high): An issue was discovered on FiberHome HG6245D devices through RP2613. wifictl_5g.cfg has cleartext passwords and 0644 permissions.
CVE-2021-27178 — CVSS 7.5 (high): An issue was discovered on FiberHome HG6245D devices through RP2613. Some passwords are stored in cleartext in nvram.
CVE-2021-27139 — CVSS 7.5 (high): An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to extract information from the device without…