← Voltar para CVEs
CVE-2018-16201
N/ADescricao
Toshiba Home gateway HEM-GW16A 1.2.9 and earlier, Toshiba Home gateway HEM-GW26A 1.2.9 and earlier uses hard-coded credentials, which may allow an attacker on the same network segment to login to the administrators settings screen and change the configuration or execute arbitrary OS commands.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado1/9/2019
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
toshiba:hem-gw16atoshiba:hem-gw16a_firmwaretoshiba:hem-gw26atoshiba:hem-gw26a_firmware
Fraquezas (CWE)
CWE-798
Referencias
http://www.tlt.co.jp/tlt/information/seihin/notice/defect/20181219/20181219.htm(vultures@jpcert.or.jp)
https://jvn.jp/en/jp/JVN99810718/index.html(vultures@jpcert.or.jp)
http://www.tlt.co.jp/tlt/information/seihin/notice/defect/20181219/20181219.htm(af854a3a-2127-422b-91ae-364da2661108)
https://jvn.jp/en/jp/JVN99810718/index.html(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.