Vulnerabilities > Axesstel

DATE CVE VULNERABILITY TITLE RISK
2017-09-13 CVE-2017-13724 Cross-site Scripting vulnerability in Axesstel Mu553S Firmware Mu553Sv1.14
On the Axesstel MU553S MU55XS-V1.14, there is a Stored Cross Site Scripting vulnerability in the APN parameter under the "Basic Settings" page.
network
low complexity
axesstel CWE-79
5.4
5.4
2017-09-13 CVE-2017-11351 Use of Hard-coded Credentials vulnerability in Axesstel Mu553S Firmware Mu553Sv1.14
Axesstel MU553S MU55XS-V1.14 devices have a default password of admin for the admin account.
network
low complexity
axesstel CWE-798
critical
 9.8
9.8
2017-09-13 CVE-2017-11350 Cross-Site Request Forgery (CSRF) vulnerability in Axesstel Mu553S Firmware Mu553Sv1.14
Cross-Site Request Forgery (CSRF) exists in cgi-bin/ConfigSet on Axesstel MU553S MU55XS-V1.14 devices.
network
low complexity
axesstel CWE-352
8.8
8.8