Vulnerabilities > Axesstel > Mu553S

DATE CVE VULNERABILITY TITLE RISK
2017-09-13 CVE-2017-13724 Cross-site Scripting vulnerability in Axesstel Mu553S Firmware Mu553Sv1.14
On the Axesstel MU553S MU55XS-V1.14, there is a Stored Cross Site Scripting vulnerability in the APN parameter under the "Basic Settings" page.
network
axesstel CWE-79
3.5
3.5
2017-09-13 CVE-2017-11351 Use of Hard-coded Credentials vulnerability in Axesstel Mu553S Firmware Mu553Sv1.14
Axesstel MU553S MU55XS-V1.14 devices have a default password of admin for the admin account.
network
low complexity
axesstel CWE-798
critical
 10.0
10
2017-09-13 CVE-2017-11350 Cross-Site Request Forgery (CSRF) vulnerability in Axesstel Mu553S Firmware Mu553Sv1.14
Cross-Site Request Forgery (CSRF) exists in cgi-bin/ConfigSet on Axesstel MU553S MU55XS-V1.14 devices.
network
axesstel CWE-352
6.8
6.8