VYPR
Vendor

Connectize

Products
3
CVEs
7
Across products
10
Status
Private

Products

3

Recent CVEs

7
  • CVE-2023-24052CriDec 4, 2023
    risk 0.64cvss 9.8epss 0.01

    An issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via the change password functionality as it does not prompt for the current password.

  • CVE-2023-24051CriDec 4, 2023
    risk 0.64cvss 9.8epss 0.01

    A client side rate limit issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via brute force style attacks.

  • CVE-2023-24049CriDec 4, 2023
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges on the device via poor credential management.

  • CVE-2023-24048HigDec 4, 2023
    risk 0.57cvss 8.8epss 0.00

    Cross Site Request Forgery (CSRF) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via crafted GET request to /man_password.htm.

  • CVE-2023-24047MedDec 4, 2023
    risk 0.44cvss 6.8epss 0.00

    An Insecure Credential Management issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via use of weak hashing algorithm.

  • CVE-2023-24046MedDec 4, 2023
    risk 0.44cvss 6.8epss 0.01

    An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary commands via use of a crafted string in the ping utility.

  • CVE-2023-24050MedDec 4, 2023
    risk 0.35cvss 5.4epss 0.00

    Cross Site Scripting (XSS) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary code via crafted string when setting the Wi-Fi password in the admin panel.