RSS   Vulnerabilities for 'Nsg 9000 firmware'   RSS

2018-08-05
 
CVE-2018-14943

CWE-798
 

 
Harmonic NSG 9000 devices have a default password of nsgadmin for the admin account, a default password of nsgguest for the guest account, and a default password of nsgconfig for the config account.

 
 
CVE-2018-14942

CWE-22
 

 
Harmonic NSG 9000 devices allow remote authenticated users to conduct directory traversal attacks, as demonstrated by "POST /PY/EMULATION_GET_FILE" or "POST /PY/EMULATION_EXPORT" with FileName=../../../passwd in the POST data.

 

 >>> Vendor: Harmonicinc 2 Products
Nsg 9000 firmware
Nsg 9000


Copyright 2024, cxsecurity.com

 

Back to Top