Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

4Gee Wifi Mbb Firmware Security Vulnerabilities - February

cve
cve

CVE-2017-14267

EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have CSRF, related to goform/AddNewProfile, goform/setWanDisconnect, goform/setSMSAutoRedirectSetting, goform/setReset, and goform/uploadBackupSettings.

8.8CVSS

8.6AI Score

0.009EPSS

2017-09-11 09:29 AM
36
cve
cve

CVE-2017-14268

EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have XSS in the sms_content parameter in a getSMSlist request.

6.1CVSS

6AI Score

0.001EPSS

2017-09-11 09:29 AM
28
cve
cve

CVE-2017-14269

EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices allow remote attackers to obtain sensitive information via a JSONP endpoint, as demonstrated by passwords and SMS content.

9.8CVSS

8.9AI Score

0.026EPSS

2017-09-11 09:29 AM
35