Ac21000 G6 Firmware@641.139.1.1256 Security Vulnerabilities and Issues — Ac21000 G6 Firmware@641.139.1.1256 CVE List

Lucene search

ConnectizeAc21000 G6 Firmware641.139.1.1256

7 matches found

CVE•added 2023/12/04 11:15 p.m.•55 views

CVE-2023-24051

A client side rate limit issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via brute force style attacks.

9.8CVSS9.4AI score0.0009EPSS

CVE•added 2023/12/04 11:15 p.m.•39 views

CVE-2023-24047

An Insecure Credential Management issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via use of weak hashing algorithm.

8CVSS6.7AI score0.0003EPSS

CVE•added 2023/12/04 11:15 p.m.•38 views

CVE-2023-24050

Cross Site Scripting (XSS) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary code via crafted string when setting the Wi-Fi password in the admin panel.

5.4CVSS5.5AI score0.0012EPSS

CVE•added 2023/12/04 11:15 p.m.•33 views

CVE-2023-24046

An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary commands via use of a crafted string in the ping utility.

8.8CVSS6.7AI score0.00049EPSS

CVE•added 2023/12/04 11:15 p.m.•32 views

CVE-2023-24052

An issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via the change password functionality as it does not prompt for the current password.

9.8CVSS9.6AI score0.0009EPSS

CVE•added 2023/12/04 11:15 p.m.•29 views

CVE-2023-24049

An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges on the device via poor credential management.

9.8CVSS9.4AI score0.0009EPSS

CVE•added 2023/12/04 11:15 p.m.•25 views

CVE-2023-24048

Cross Site Request Forgery (CSRF) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via crafted GET request to /man_password.htm.

8.8CVSS8.9AI score0.00083EPSS