2 matches found
CVE-2022-28376
Verizon 5G Home LVSKIHP outside devices through 2022-02-15 allow anyone knowing the device's serial number to access a CPE admin website, e.g., at the 10.0.0.1 IP address. The password for the verizon username is calculated by concatenating the serial number and the model i.e., the LVSKIHP string...
CVE-2022-28376
CVE-2022-28376 (Verizon 5G Home LVSKIHP) affects LVSKIHP outside devices up to 2022-02-15, where an attacker who knows a device’s serial number can access the CPE admin page (e.g., at 10.0.0.1). The root cause is a weak authentication helper: the password for the Verizon username is derived by co...