Lucene search

Wireless-n Wifi Repeater Firmware Security Vulnerabilities

cve

CVE-2021-28936

The Acexy Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) Web management administrator password can be changed by sending a specially crafted HTTP GET request. The administrator username has to be known (default:admin) whereas no previous authentication is...

7.5CVSS

7.7AI Score

0.011EPSS

2021-03-29 01:15 PM

cve

CVE-2021-28937

The /password.html page of the Web management interface of the Acexy Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) contains the administrator account password in plaintext. The page can be intercepted on...

7.5CVSS

7.6AI Score

0.033EPSS

2021-03-29 01:15 PM

cve

CVE-2021-28160

Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) suffers from a reflected XSS vulnerability due to unsanitized SSID value when the latter is displayed in the /repeater.html page ("Repeater Wizard" homepage...

6.1CVSS

5.9AI Score

0.001EPSS

2021-03-18 07:15 PM