CVE-2023-24046
- EPSS 0.05%
- Veröffentlicht 04.12.2023 23:15:23
- Zuletzt bearbeitet 21.11.2024 07:47:19
An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary commands via use of a crafted string in the ping utility.
CVE-2023-24047
- EPSS 0.03%
- Veröffentlicht 04.12.2023 23:15:23
- Zuletzt bearbeitet 21.11.2024 07:47:19
An Insecure Credential Management issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via use of weak hashing algorithm.
CVE-2023-24048
- EPSS 0.11%
- Veröffentlicht 04.12.2023 23:15:23
- Zuletzt bearbeitet 21.11.2024 07:47:19
Cross Site Request Forgery (CSRF) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via crafted GET request to /man_password.htm.
CVE-2023-24049
- EPSS 0.12%
- Veröffentlicht 04.12.2023 23:15:23
- Zuletzt bearbeitet 29.05.2025 15:15:24
An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges on the device via poor credential management.
CVE-2023-24050
- EPSS 0.12%
- Veröffentlicht 04.12.2023 23:15:23
- Zuletzt bearbeitet 21.11.2024 07:47:19
Cross Site Scripting (XSS) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary code via crafted string when setting the Wi-Fi password in the admin panel.
CVE-2023-24051
- EPSS 0.12%
- Veröffentlicht 04.12.2023 23:15:23
- Zuletzt bearbeitet 21.11.2024 07:47:20
A client side rate limit issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via brute force style attacks.
CVE-2023-24052
- EPSS 0.09%
- Veröffentlicht 04.12.2023 23:15:23
- Zuletzt bearbeitet 21.11.2024 07:47:20
An issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via the change password functionality as it does not prompt for the current password.