Skip to main content

Coda 4582U Firmware

2 CVEs product

Monthly

CVE-2024-25730 CRITICAL Act Now

Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy (only about one million. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Coda 4582U Firmware Coda 4589 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2020-8824 MEDIUM POC This Month

Hitron CODA-4582U 7.1.1.30 devices allow XSS via a Managed Device name on the Wireless > Access Control > Add Managed Device screen. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Coda 4582U Firmware
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
EPSS 1% CVSS 9.8
CRITICAL Act Now

Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy (only about one million. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Coda 4582U Firmware Coda 4589 Firmware
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM POC This Month

Hitron CODA-4582U 7.1.1.30 devices allow XSS via a Managed Device name on the Wireless > Access Control > Add Managed Device screen. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Coda 4582U Firmware
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy