Vulnerabilities > CVE-2014-8656 - Credentials Management vulnerability in Compal Broadband Networks products

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
compal-broadband-networks
CWE-255
critical
exploit available

Summary

The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH have a default password of (1) admin for the admin account and (2) compalbn for the root account, which makes it easier for remote attackers to obtain access to certain sensitive information via unspecified vectors.

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionCBN CH6640E/CG6640E Wireless Gateway Series Multiple Vulnerabilities. CVE-2014-8655,CVE-2014-8657. Webapps exploit for hardware platform
fileexploits/hardware/webapps/35075.txt
idEDB-ID:35075
last seen2016-02-04
modified2014-10-27
platformhardware
port
published2014-10-27
reporterLiquidWorm
sourcehttps://www.exploit-db.com/download/35075/
titleCBN CH6640E/CG6640E Wireless Gateway Series Multiple Vulnerabilities
typewebapps