Connectize Ac21000_g6_firmware
7 CVEs affecting Connectize Ac21000_g6_firmware. Latest disclosed: 2023-12-04. Critical: 3, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-24052 | Critical | 9.8 | 2023-12-04 | An issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via the change password functionality as it does not… |
CVE-2023-24051 | Critical | 9.8 | 2023-12-04 | A client side rate limit issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via brute force style attacks. |
CVE-2023-24049 | Critical | 9.8 | 2023-12-04 | An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges on the device via poor credential management. |
CVE-2023-24048 | High | 8.8 | 2023-12-04 | Cross Site Request Forgery (CSRF) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via crafted GET request… |
CVE-2023-24047 | Medium | 6.8 | 2023-12-04 | An Insecure Credential Management issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via use of weak hashin… |
CVE-2023-24046 | Medium | 6.8 | 2023-12-04 | An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary commands via use of a crafted string in the ping utility. |
CVE-2023-24050 | Medium | 5.4 | 2023-12-04 | Cross Site Scripting (XSS) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary code via crafted string when setting the Wi-… |