5 matches found
CVE-2014-8655
The CVE-2014-8655 issue affects Compal Broadband Networks CH6640E/CG6640E Wireless Gateway (1.0) with firmware CH6640-3.5.11.7-NOSH. The vulnerability allows remote attackers to bypass authentication and obtain sensitive information by manipulating a userData cookie in requests to xml/ pages (Cmg...
CVE-2014-8657
The CVE-2014-8657 entry concerns the Compal CH6640E/CG6640E Wireless Gateway (firmware CH6640-3.5.11.7-NOSH). The vulnerability allows remote attackers to trigger a denial of service by requesting wirelessChannelStatus.html, leading to a disconnect of all Wi‑Fi clients. Documented impact is DoS w...
CVE-2014-8654
CVE-2014-8654 concerns CSRF vulnerabilities in the Compal Broadband Networks CBn CH6640E/CG6640E Wireless Gateway series (hardware version 1.0; firmware CH6640-3.5.11.7-NOSH). The vulnerabilities enable remote attackers to hijack administrator sessions and perform actions via specific web interfa...
CVE-2014-8656
CVE-2014-8656 affects the Compal CBN CH6640E/CG6640E Wireless Gateway (1.0) with firmware CH6640-3.5.11.7-NOSH. The issue is default credentials: admin for the admin account and compalbn for the root account, which can allow remote attackers to access certain sensitive information via unspecified...
CVE-2014-8653
CVE-2014-8653 affects Compal Broadband Networks CH6640E/CG6640E Wireless Gateway (model CH6640/CH6640E, firmware CH6640-3.5.11.7-NOSH). The primary issue is an XSS flaw exposed via the userData cookie, enabling remote injection of arbitrary script/HTML. The ZSL report expands this to multiple vul...