Vulnerabilities for Coaxdata gateway 1gbps firmware (...) - CXSECURITY.COM

Vulnerabilities for
'Coaxdata gateway 1gbps firmware'

2017-07-20

CVE-2017-6532

CWE-522

Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20 have cleartext credentials in /mib.db.

CVE-2017-6531

CWE-noinfo

On Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20, the backup/restore feature lacks access control, related to ReadFile.cgi and LoadCfgFile.

CVE-2017-6530

CWE-287

Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20 do not check password.shtml authorization, leading to Arbitrary password change.

Copyright 2024, cxsecurity.com