EUVD-2017-11418

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Toshiba Home gateways HEM-GW16A and HEM-GW26A allow password changes by attackers via vulnerabilities.

Reporter	Title	Published	Views	Family All 8
CNVD	Improper Access Control Vulnerability in Toshiba Home gateway HEM-GW16A Firmware	28 Jun 201700:00	–	cnvd
CVE	CVE-2017-2235	7 Jul 201713:00	–	cve
Cvelist	CVE-2017-2235	7 Jul 201713:00	–	cvelist
Japan Vulnerability Notes	JVN#85901441: Multiple vulnerabilities in Toshiba Lighting & Technology Corporation Home gateway	27 Jun 201700:00	–	jvn
Japan Vulnerability Notes	Improper access control vulnerability in Toshiba Lighting & Technology Corporation Home gateway	28 Jun 201701:23	–	jvn
NVD	CVE-2017-2235	7 Jul 201713:29	–	nvd
OSV	CVE-2017-2235	7 Jul 201713:29	–	osv
Prion	Authentication flaw	7 Jul 201713:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "dcf2ccd6-0e09-3ebe-aa87-e64cda6bc184",
        "vendor": {
          "name": "Toshiba Lighting & Technology Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "400f68be-3879-31d7-b23b-92676caf6451",
        "product": {
          "name": "Toshiba Home gateway HEM-GW26A"
        },
        "product_version": "firmware HEM-GW26A-FW-V1.2.0 and earlier"
      },
      {
        "id": "d609fdbd-305b-361b-9bc1-c03419339f7f",
        "product": {
          "name": "Toshiba Home gateway HEM-GW16A"
        },
        "product_version": "firmware HEM-GW16A-FW-V1.2.0 and earlier"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN85901441/index.html
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

9.5High risk

Vulners AI Score9.5

CVSS 39.8

CVSS 25

EPSS0.00311