Vulnerabilities > Carrier > Hills Comnav Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-04-20 CVE-2022-1318 Information Exposure Through Discrepancy vulnerability in Carrier Hills Comnav Firmware 300219
Hills ComNav version 3002-19 suffers from a weak communication channel.
local
low complexity
carrier CWE-203
5.5
2022-04-20 CVE-2022-26519 Improper Restriction of Excessive Authentication Attempts vulnerability in Carrier Hills Comnav Firmware 300219
There is no limit to the number of attempts to authenticate for the local configuration pages for the Hills ComNav Version 3002-19 interface, which allows local attackers to brute-force credentials.
local
low complexity
carrier CWE-307
5.5