Skip to main content

4Gt101W Bootloader

3 CVEs product

Monthly

CVE-2017-11647 MEDIUM POC This Month

NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to stored cross-site scripting attacks. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS 4Gt101W Software 4Gt101W Bootloader
NVD
CVSS 3.0
5.4
EPSS
0.2%
CVE-2017-11646 HIGH This Week

NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to CSRF attacks, as demonstrated by using administration.html to disable the firewall. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF 4Gt101W Software 4Gt101W Bootloader
NVD
CVSS 3.0
8.8
EPSS
0.1%
CVE-2017-11645 CRITICAL Act Now

NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 do not require authentication for logfile.html, status.html, or system_config.html. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass 4Gt101W Software 4Gt101W Bootloader
NVD
CVSS 3.0
9.8
EPSS
0.4%
EPSS 0% CVSS 5.4
MEDIUM POC This Month

NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to stored cross-site scripting attacks. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS 4Gt101W Software 4Gt101W Bootloader
NVD
EPSS 0% CVSS 8.8
HIGH This Week

NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to CSRF attacks, as demonstrated by using administration.html to disable the firewall. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF 4Gt101W Software 4Gt101W Bootloader
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 do not require authentication for logfile.html, status.html, or system_config.html. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass 4Gt101W Software 4Gt101W Bootloader
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy