VYPR

FXA3200

by Contec Co., Ltd.

CVEs (2)

  • CVE-2022-36159Sep 26, 2022
    risk 0.00cvss epss 0.01

    Contec FXA3200 version 1.13 and under were discovered to contain a hard coded hash password for root stored in the component /etc/shadow. As the password strength is weak, it can be cracked in few minutes. Through this credential, a malicious actor can access the Wireless LAN…

  • CVE-2022-36158Sep 26, 2022
    risk 0.00cvss epss 0.01

    Contec FXA3200 version 1.13.00 and under suffers from Insecure Permissions in the Wireless LAN Manager interface which allows malicious actors to execute Linux commands with root privilege via a hidden web page (/usr/www/ja/mnt_cmd.cgi).