CVE-2022-30623 Chcnav - P5E GNSS Authentication bypass

The server checks the user's cookie in a non-standard way, and a value is entered in the cookie value name of the status and its value is set to true to bypass the identification with the system using a username and password...

CVE-2022-30626 Chcnav - P5E GNSS API not secure

Browsing the path: http://ip/wifiappataget.cmd, will show in the name of the existing access point on the component, and a password in clear text...

CVE-2022-30624 Chcnav - P5E GNSS Authentication bypass admin password reset

Browsing the admin.html page allows the user to reset the admin password. Also appears in the JS code for the password...

Chcnav P5E GNSS 信任管理问题漏洞

Chcnav P5E GNSS is a Global Positioning System from Chcnav. The Chcnav P5E GNSS suffers from a security vulnerability that can be exploited by an attacker to extract usernames and passwords already on the user's operating system from the FW...

Chcnav P5E GNSS 授权问题漏洞

Chcnav P5E GNSS is a Global Positioning System from Chcnav Corporation. A security vulnerability exists in the Chcnav P5E GNSS, which can be exploited by an attacker to reset the "admin" password by browsing to the "admin.html" page...

Chcnav P5E GNSS 信息泄露漏洞

Chcnav P5E GNSS is a Global Positioning System from Chcnav. A security vulnerability exists in the Chcnav P5E GNSS that stems from a directory listing that could provide an attacker with a complete index of all resources located within the directory...

Chcnav P5E GNSS 安全漏洞

Chcnav P5E GNSS is a global positioning system from Chcnav. A security vulnerability exists in Chcnav P5E GNSS that stems from an insecure P5E GNSS API that displays passwords in clear text...

Chcnav P5E GNSS 授权问题漏洞

Chcnav P5E GNSS is a Global Positioning System from Chcnav. A security vulnerability exists in Chcnav P5E GNSS that stems from an error in the way user cookies are checked, which can be exploited by an attacker to bypass system identification using a username and password...

Chcnav P5E GNSS 信任管理问题漏洞

Chcnav P5E GNSS is a Global Positioning System from Chcnav. The Chcnav P5E GNSS suffers from a trust management issue vulnerability that originates from allowing to view usernames and passwords without privileges, which could be exploited by an attacker to potentially gain access to the system...