Mofinetwork Mofi4500-4gxelte Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Mofinetwork Mofi4500-4gxelte Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2020-13859 — CVSS 9.8 (critical): An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. A format error in /etc/shadow, coupled with a logic bug in the…
CVE-2020-15833 — CVSS 9.8 (critical): An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. The Dropbear SSH daemon has been modified to accept an…
CVE-2020-13858 — CVSS 9.8 (critical): An issue was discovered on Mofi Network MOFI4500-4GXeLTE 3.6.1-std and 4.0.8-std devices. They contain two undocumented administrator…
CVE-2020-15835 — CVSS 9.8 (critical): An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. The authentication function contains undocumented code that…
CVE-2020-15836 — CVSS 9.8 (critical): An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. The authentication function passes untrusted data to the…
CVE-2020-15832 — CVSS 7.5 (high): An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. The poof.cgi script contains undocumented code that provides…
CVE-2020-13857 — CVSS 7.5 (high): An issue was discovered on Mofi Network MOFI4500-4GXeLTE 3.6.1-std and 4.0.8-std devices. They can be rebooted by sending an…
CVE-2020-13860 — CVSS 7.5 (high): An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. The one-time password algorithm for the undocumented system…
CVE-2020-13856 — CVSS 7.5 (high): An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. Authentication is not required to download the support file…
CVE-2020-15834 — CVSS 7.5 (high): An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. The wireless network password is exposed in a QR encoded…