Cross-Site Request Forgery (CSRF) exists in cgi-bin/ConfigSet on Axesstel MU553S MU55XS-V1.14 devices.
8.8CVSS
8.7AI Score
0.001EPSS
Axesstel MU553S MU55XS-V1.14 devices have a default password of admin for the admin account.
9.8CVSS
9.5AI Score
0.002EPSS
On the Axesstel MU553S MU55XS-V1.14, there is a Stored Cross Site Scripting vulnerability in the APN parameter under the "Basic Settings" page.
5.4CVSS
5.3AI Score
0.001EPSS