Foxconn FEMTO AP-FC4064-T Weak Password Vulnerability

The Foxconn FEMTO AP-FC4064-T is a home base station device from Foxconn. A security vulnerability exists in the web administration page of the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15 version, which stems from the admin account using a weak default password: admin, and the...

Foxconn FEMTO AP-FC4064-T Code Execution Vulnerability

The Foxconn FEMTO AP-FC4064-T is a home base station device from Foxconn. A code execution hole exists in the Web administration page in the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15 release. A remote attacker can exploit this vulnerability to execute arbitrary code in a user's...

CVE-2018-9112

A low privileged admin account with a weak default password of admin exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15. In addition, its web management page relies on the existence or values of cookies when performing security-critical operations. One can gain privileges b...

Cross site scripting

Cross Site Scripting XSS exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15 via the configuration of a user account. An attacker can execute arbitrary script on an unsuspecting user's browser...

CVE-2018-9111

Cross Site Scripting XSS exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15 via the configuration of a user account. An attacker can execute arbitrary script on an unsuspecting user's browser...

Default credentials

A low privileged admin account with a weak default password of admin exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15. In addition, its web management page relies on the existence or values of cookies when performing security-critical operations. One can gain privileges b...

CVE-2018-9112

A low privileged admin account with a weak default password of admin exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15. In addition, its web management page relies on the existence or values of cookies when performing security-critical operations. One can gain privileges b...

CVE-2018-9112

A low privileged admin account with a weak default password of admin exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15. In addition, its web management page relies on the existence or values of cookies when performing security-critical operations. One can gain privileges b...

CVE-2018-9111

Cross Site Scripting XSS exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15 via the configuration of a user account. An attacker can execute arbitrary script on an unsuspecting user's browser...

CVE-2018-9111

Cross Site Scripting XSS exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15 via the configuration of a user account. An attacker can execute arbitrary script on an unsuspecting user's browser...

CVE-2018-9112

A low privileged admin account with a weak default password of admin exists on the Foxconn FEMTO AP-FC4064-T APGTB385.8.3lb15-W47 LTE Build 15. In addition, its web management page relies on the existence or values of cookies when performing security-critical operations. One can gain privileges b...

CVE-2018-9111

CVE-2018-9111 affects Foxconn FEMTO AP-FC4064-T (AP_GT_B38_5.8.3lb15-W47 LTE Build 15). NVD describes Cross Site Scripting (XSS) via user account configuration, enabling an attacker to run arbitrary script in a user’s browser. Connected CNVD record also notes a Web administration page vulnerabili...

CVE-2018-9112

The CVE-2018-9112 issue affects the Foxconn FEMTO AP-FC4064-T (AP_GT_B38_5.8.3lb15-W47 LTE Build 15). A weak default admin password (admin) grants low-privilege admin access. The web management interface relies on cookies for security-critical operations, enabling privilege escalation by modifyin...

CVE-2018-6311

One can gain root access on the Foxconn femtocell FEMTO AP-FC4064-T version APGTB385.8.3lb15-W47 LTE Build 15 via UART pins without any restrictions, which leads to full system compromise and disclosure of user communications...

CVE-2018-6312

A privileged account with a weak default password on the Foxconn femtocell FEMTO AP-FC4064-T version APGTB385.8.3lb15-W47 LTE Build 15 can be used to turn on the TELNET service via the web interface, which allows root login without any password. This vulnerability will lead to full system...

CVE-2018-6312

The CVE-2018-6312 entry concerns Foxconn FEMTO AP-FC4064-T (AP_GT_B38_5.8.3lb15-W47 LTE Build 15). A privileged account with a weak default password enables turning on TELNET via the web interface, allowing root login without a password and full system compromise with access to user communication...

femto-st.fr XSS vulnerability

Open Bug Bounty ID: OBB-458021 Description| Value ---|--- Affected Website:| femto-st.fr Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

UK Vodafone Phone Hacking method exposed

UK Vodafone Phone Hacking method exposed The Hacker's Choice announced a security problem with Vodafone's Mobile Phone Network today. An attacker can listen to any UK Vodafone customer's phone call. An attacker can exploit a vulnerability in 3G/UMTS/WCDMA - the latest and most secure mobile phone...

UK Vodafone Phone Hacking method exposed

UK Vodafone Phone Hacking method exposed The Hacker's Choice announced a security problem with Vodafone's Mobile Phone Network today. An attacker can listen to any UK Vodafone customer's phone call. An attacker can exploit a vulnerability in 3G/UMTS/WCDMA - the latest and most secure mobile phone...