6 matches found
Cross site scripting
Cross Site Scripting XSS exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15 via the configuration of a user account. An attacker can execute arbitrary script on an unsuspecting user's browser...
Default credentials
A low privileged admin account with a weak default password of admin exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15. In addition, its web management page relies on the existence or values of cookies when performing security-critical operations. One can gain privileges b...
CVE-2018-9111
Cross Site Scripting XSS exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15 via the configuration of a user account. An attacker can execute arbitrary script on an unsuspecting user's browser...
CVE-2018-9112
The CVE-2018-9112 issue affects the Foxconn FEMTO AP-FC4064-T (AP_GT_B38_5.8.3lb15-W47 LTE Build 15). A weak default admin password (admin) grants low-privilege admin access. The web management interface relies on cookies for security-critical operations, enabling privilege escalation by modifyin...
Foxconn femtocell FEMTO AP-FC4064-T elevation of privilege vulnerability
The Foxconn femtocell FEMTO AP-FC4064-T is a home base station device from Foxconn. A security vulnerability exists in the Foxconn femtocell FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15 version. An attacker can exploit the vulnerability to gain root privileges, take control of the system a...
CVE-2018-6312
The CVE-2018-6312 entry concerns Foxconn FEMTO AP-FC4064-T (AP_GT_B38_5.8.3lb15-W47 LTE Build 15). A privileged account with a weak default password enables turning on TELNET via the web interface, allowing root login without a password and full system compromise with access to user communication...