Vulnerabilities > Connectize > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-12-04 CVE-2023-24046 Command Injection vulnerability in Connectize Ac21000 G6 Firmware 641.139.1.1256
An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary commands via use of a crafted string in the ping utility.
low complexity
connectize CWE-77
6.8
6.8
2023-12-04 CVE-2023-24047 Insufficiently Protected Credentials vulnerability in Connectize Ac21000 G6 Firmware 641.139.1.1256
An Insecure Credential Management issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via use of weak hashing algorithm.
low complexity
connectize CWE-522
6.8
6.8
2023-12-04 CVE-2023-24050 Cross-site Scripting vulnerability in Connectize Ac21000 G6 Firmware 641.139.1.1256
Cross Site Scripting (XSS) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary code via crafted string when setting the Wi-Fi password in the admin panel.
network
low complexity
connectize CWE-79
5.4
5.4