CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Airangel Hsmx Gateway is a platform from Airangel UK, Inc. used to manage authentication and billing in the network.A cross-site request forgery vulnerability exists in Airangel Hsmx Gateway prior to 5.2.04, which stems from a WEB application that does not adequately verify that the request is fr...

6.5CVSS1.9AI score0.00161EPSS

Exploits1References1

CNVD•added 2021/11/13 12:0 a.m.•17 views

Airangel Hsmx Gateway Remote Code Execution Vulnerability

Airangel Hsmx Gateway is a platform from Airangel UK, Inc. It is used to manage authentication and billing in the network.A remote code execution vulnerability exists in Airangel Hsmx Gateway prior to 5.2.04, which originates when a remote server controlled by an attacker downloads and runs a...

10CVSS3AI score0.08856EPSS

Exploits1References1

NVD•added 2021/11/10 5:15 p.m.•9 views

CVE-2021-40520

Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials...

9.8CVSS0.00405EPSS

Exploits1References2

OSV•added 2021/11/10 5:15 p.m.•2 views

CVE-2021-40520

Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials...

9.8CVSS5.8AI score0.00405EPSS

Exploits1References2

NVD•added 2021/11/10 5:15 p.m.•11 views

CVE-2021-40517

Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. XSS Payload is placed in the name column of the updates table using database access...

5.4CVSS0.00206EPSS

Exploits1References2

Prion•added 2021/11/10 5:15 p.m.•20 views

Command injection

Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials...

5CVSS9.4AI score0.00405EPSS

Exploits1References2Affected Software5

Prion•added 2021/11/10 5:15 p.m.•17 views

Cross site scripting

Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. XSS Payload is placed in the name column of the updates table using database access...

3.5CVSS5.2AI score0.00206EPSS

Exploits1References2Affected Software5

NVD•added 2021/11/10 4:15 p.m.•9 views

CVE-2021-40519

Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials...

10CVSS0.00314EPSS

Exploits1References2

OSV•added 2021/11/10 4:15 p.m.•1 views

CVE-2021-40521

Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution...

9.8CVSS7.4AI score

Exploits0References2

NVD•added 2021/11/10 4:15 p.m.•8 views

CVE-2021-40518

Airangel HSMX Gateway devices through 5.2.04 allow CSRF...

6.5CVSS0.00161EPSS

Exploits1References2

Prion•added 2021/11/10 4:15 p.m.•17 views

Remote code execution

Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution...

10CVSS9.6AI score0.08856EPSS

Exploits1References2Affected Software5

Prion•added 2021/11/10 4:15 p.m.•11 views

Cross site request forgery (csrf)

Airangel HSMX Gateway devices through 5.2.04 allow CSRF...

4.3CVSS6.6AI score0.00161EPSS

Exploits1References2Affected Software5

Prion•added 2021/11/10 4:15 p.m.•11 views

Hardcoded credentials

Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials...

6.4CVSS9.4AI score0.00314EPSS

Exploits1References2Affected Software5

CVE•added 2021/11/10 4:6 p.m.•43 views

CVE-2021-40520

Airangel HSMX Gateway devices up to version 5.2.04 are affected by a credential disclosure vulnerability due to weak SSH credentials. Exploitation could allow an attacker to obtain SSH credentials and take control of the device. Publicly provided details confirm affected product/version and impac...

9.8CVSS9.5AI score0.00405EPSS

Exploits1References2Affected Software1