Vulnerabilities > CVE-2021-22661 - Unspecified vulnerability in Prosoft-Technology Icx35-Hwc-A Firmware and Icx35-Hwc-E Firmware
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE Summary
Changing the password on the module webpage does not require the user to type in the current password first. Thus, the password could be changed by a user or external process without knowledge of the current password on the ICX35-HWC-A and ICX35-HWC-E (Versions 1.9.62 and prior).
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 4 | |
Hardware | 2 |