Hem-gw16a Firmware Security Vulnerabilities and Issues — Hem-gw16a Firmware CVE List

Lucene search

ToshibaHem-gw16a Firmware

5 matches found

CVE•added 2017/07/07 1:29 p.m.•44 views

CVE-2017-2236

Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier, Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier uses hard-coded credentials, which may allow attackers to perform operations on device with administrative privileges.

9.8CVSS9.4AI score0.00327EPSS

CVE•added 2017/07/07 1:29 p.m.•42 views

CVE-2017-2237

Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier. Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors.

10CVSS9.6AI score0.00424EPSS

CVE•added 2017/07/07 1:29 p.m.•41 views

CVE-2017-2238

Cross-site request forgery (CSRF) vulnerability in Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier and Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

8.8CVSS9.1AI score0.00136EPSS

CVE•added 2017/07/07 1:29 p.m.•39 views

CVE-2017-2234

Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier, Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier may allow remote attackers to access a non-documented developer screen to perform operations on device with administrative privileges.

9.8CVSS9.4AI score0.00657EPSS

CVE•added 2017/07/07 1:29 p.m.•39 views

CVE-2017-2235

Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier. Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier allows an attacker to bypass access restriction to change the administrator account password via unspecified vectors.

9.8CVSS9.3AI score0.00311EPSS