Vulnerabilities > NEC > Univerge Sv9100 Webpro Firmware

DATE CVE VULNERABILITY TITLE RISK
2018-12-26 CVE-2018-11742 Insufficiently Protected Credentials vulnerability in NEC Univerge Sv9100 Webpro Firmware 6.00.00
NEC Univerge Sv9100 WebPro 6.00.00 devices have Cleartext Password Storage in the Web UI.
network
low complexity
nec CWE-522
critical
9.8
2018-12-26 CVE-2018-11741 Information Exposure vulnerability in NEC Univerge Sv9100 Webpro Firmware 6.00.00
NEC Univerge Sv9100 WebPro 6.00.00 devices have Predictable Session IDs that result in Account Information Disclosure via Home.htm?sessionId=#####&GOTO(8) URIs.
network
low complexity
nec CWE-200
critical
9.8