Vulnerabilities > Netcomm > 4Gt101W Bootloader

DATE CVE VULNERABILITY TITLE RISK
2017-07-28 CVE-2017-11647 Cross-site Scripting vulnerability in Netcomm 4Gt101W Bootloader and 4Gt101W Software
NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to stored cross-site scripting attacks.
network
low complexity
netcomm CWE-79
5.4
5.4
2017-07-28 CVE-2017-11646 Cross-Site Request Forgery (CSRF) vulnerability in Netcomm 4Gt101W Bootloader and 4Gt101W Software
NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to CSRF attacks, as demonstrated by using administration.html to disable the firewall.
network
low complexity
netcomm CWE-352
8.8
8.8
2017-07-28 CVE-2017-11645 Improper Authentication vulnerability in Netcomm 4Gt101W Bootloader and 4Gt101W Software
NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 do not require authentication for logfile.html, status.html, or system_config.html.
network
low complexity
netcomm CWE-287
critical
 9.8
9.8