2 matches found
CVE-2019-19967
The Administration page on Connect Box EuroDOCSIS 3.0 Voice Gateway CH7465LG-NCIP-6.12.18.25-2p6-NOSH devices accepts a cleartext password in a POST request on port 80, as demonstrated by the Password field to the xml/setter.xml URI...
CVE-2019-19967
The CVE-2019-19967 issue affects the Connect Box EuroDOCSIS 3.0 Voice Gateway CH7465LG-NCIP-6.12.18.25-2p6-NOSH, where the Administration page accepts a cleartext password in a POST to port 80 via xml/setter.xml. This enables potential exposure of credentials over the network (confidentiality imp...