21 matches found
CVE-2024-28089
Hitron CODA-4582 2AHKM-CODA4589 7.2.4.5.1b8 devices allow a remote attacker within Wi-Fi proximity who has access to the router admin panel to conduct a DOM-based stored XSS attack that can fetch remote resources. The payload is executed at index.htmladvancedlocation aka the Device Location page...
CVE-2024-31973
Hitron CODA-4582 2AHKM-CODA4589 7.2.4.5.1b8 devices allow a remote attacker within Wi-Fi proximity to conduct stored XSS attacks via the 'Network Name SSID' input fields to the /index.htmlwirelessbasic page...
CVE-2024-31973
Hitron CODA-4582 2AHKM-CODA4589 7.2.4.5.1b8 devices allow a remote attacker within Wi-Fi proximity to conduct stored XSS attacks via the 'Network Name SSID' input fields to the /index.htmlwirelessbasic page...
PT-2024-24327 · Hitron · Hitron Coda-4582
Name of the Vulnerable Software and Affected Versions: Hitron CODA-4582 2AHKM-CODA4589 version 7.2.4.5.1b8 Description: The issue allows a remote attacker within Wi-Fi proximity to conduct stored XSS attacks via the Network Name SSID input fields to the "/index.htmlwireless basic" API endpoint...
CVE-2024-31973
Hitron CODA-4582 2AHKM-CODA4589 7.2.4.5.1b8 devices allow a remote attacker within Wi-Fi proximity to conduct stored XSS attacks via the 'Network Name SSID' input fields to the /index.htmlwirelessbasic page...
CVE-2024-31973
Hitron CODA-4582 2AHKM-CODA4589 7.2.4.5.1b8 devices allow a remote attacker within Wi-Fi proximity to conduct stored XSS attacks via the 'Network Name SSID' input fields to the /index.htmlwirelessbasic page...
Hitron CODA-4582 2AHKM-CODA4589 安全漏洞
The Hitron CODA-4582 2AHKM-CODA4589 is a cable modem router from China Zhongqi Hitron. A security vulnerability exists in Hitron CODA-4582 2AHKM-CODA4589 version 7.2.4.5.1b8, which originates from a vulnerability that allows remote attackers to conduct a stored cross-site scripting attack via the...
CVE-2024-31973
Hitron CODA-4582 2AHKM-CODA4589 devices (firmware version 7.2.4.5.1b8) are affected by CVE-2024-31973, a stored XSS vulnerability in the SSID field of the /index.html#wireless_basic page. The issue allows a remote attacker within Wi‑Fi proximity to inject script via the Network Name (SSID) input,...
The vulnerability of the microprogrammed software of the wireless modems Hitron CODA-4582 and CODA-4589, related to insufficient entropy due to the default use of PSK, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the microprogrammed wireless modems Hitron CODA-4582 and CODA-4589 relates to insufficient entropy due to the use of default PSKs which are generated from 5-digit hexadecimal values combined using the “Hitron” substring. Exploiting this vulnerability could allow an attacker t...
CVE-2024-28089
Hitron CODA-4582 2AHKM-CODA4589 7.2.4.5.1b8 devices allow a remote attacker within Wi-Fi proximity who has access to the router admin panel to conduct a DOM-based stored XSS attack that can fetch remote resources. The payload is executed at index.htmladvancedlocation aka the Device Location page...
Hitron Technologies CODA-4582 Cross-Site Scripting Vulnerability
The Hitron Technologies CODA-4582 is a modem router from Hitron Technologies China. A cross-site scripting vulnerability exists in Hitron Technologies CODA-4582 2AHKM-CODA4589 version 7.2.4.5.1b8, which originates from a security hole in the Device Location page and allows remote attackers near...
CVE-2024-28089
Hitron CODA-4582 2AHKM-CODA4589 7.2.4.5.1b8 devices allow a remote attacker within Wi-Fi proximity who has access to the router admin panel to conduct a DOM-based stored XSS attack that can fetch remote resources. The payload is executed at index.htmladvancedlocation aka the Device Location page...
CVE-2024-28089
CVE-2024-28089 affects Hitron CODA-4582 2AHKM-CODA4589 (version 7.2.4.5.1b8). The vulnerability is a DOM-based stored XSS triggered on the Device Location page (index.html#advanced_location) that can be exploited by a remote attacker within Wi‑Fi proximity who has access to the router admin panel...
CVE-2024-28089
Hitron CODA-4582 2AHKM-CODA4589 7.2.4.5.1b8 devices allow a remote attacker within Wi-Fi proximity who has access to the router admin panel to conduct a DOM-based stored XSS attack that can fetch remote resources. The payload is executed at index.htmladvancedlocation aka the Device Location page...
PT-2024-22257 · Hitron · Hitron Coda-4582
Name of the Vulnerable Software and Affected Versions: Hitron CODA-4582 2AHKM-CODA4589 version 7.2.4.5.1b8 Description: The issue allows a remote attacker within Wi-Fi proximity, who has access to the router admin panel, to conduct a DOM-based stored XSS attack. This attack can fetch remote...
Design/Logic Flaw
Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy only about one million possibilities...
CVE-2024-25730
Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy only about one million possibilities...
Hitron CODA-4582 and CODA-4589 Security Vulnerabilities
The Hitron Technologies CODA-4582 and Hitron Technologies CODA-4589 are demodulator routers from Hitron Technologies, a Chinese company. A security vulnerability exists in the Hitron CODA-4582 and CODA-4589 that stems from the devices having default PSKs that are generated by concatenating a...
PT-2024-2064 · Hitron · Coda-4589 +1
Name of the Vulnerable Software and Affected Versions: Hitron CODA-4582 and CODA-4589 devices affected versions not specified Description: The issue is related to insufficient entropy due to the use of default PSKs, which are generated from 5-digit hex values concatenated with a "Hitron" substrin...
CVE-2024-25730
Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy only about one million possibilities...