Hongdian H8951-4g-esp Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Hongdian H8951-4g-esp Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2023-49255 — CVSS 9.8 (critical): The router console is accessible without authentication at "data" field, and while a user needs to be logged in in order to modify the…
CVE-2023-49262 — CVSS 9.8 (critical): The authentication mechanism can be bypassed by overflowing the value of the Cookie "authentication" field, provided there is an active…
CVE-2023-49254 — CVSS 8.8 (high): Authenticated user can execute arbitrary commands in the context of the root user by providing payload in the "destination" field of the…
CVE-2023-49257 — CVSS 8.8 (high): An authenticated user is able to upload an arbitrary CGI-compatible file using the certificate upload utility and execute it with the root…
CVE-2023-49259 — CVSS 7.5 (high): The authentication cookies are generated using an algorithm based on the username, hardcoded secret and the up-time, and can be guessed in…
CVE-2023-49256 — CVSS 7.5 (high): It is possible to download the configuration backup without authorization and decrypt included passwords using hardcoded static key.
CVE-2023-49261 — CVSS 7.5 (high): The "tokenKey" value used in user authorization is visible in the HTML source of the login page.
CVE-2023-49258 — CVSS 6.1 (medium): User browser may be forced to execute JavaScript and pass the authentication cookie to the attacker leveraging the XSS vulnerability…
CVE-2023-49260 — CVSS 6.1 (medium): An XSS attack can be performed by changing the MOTD banner and pointing the victim to the "terminal_tool.cgi" path. It can be used together…