Skip to main content

Hb8204Hr Firmware

1 CVEs product

Monthly

CVE-2017-14335 HIGH POC THREAT Act Now

On Beijing Hanbang Hanbanggaoke devices, because user-controlled input is not sufficiently sanitized, sending a PUT request to /ISAPI/Security/users/1 allows an admin password change. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 20.2%.

Information Disclosure Hb7024Xt Firmware Hb7032Xt Firmware Hb7008T2 Firmware Hb7016T2 Firmware +65
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
20.2%
EPSS 20% CVSS 7.5
HIGH POC THREAT Act Now

On Beijing Hanbang Hanbanggaoke devices, because user-controlled input is not sufficiently sanitized, sending a PUT request to /ISAPI/Security/users/1 allows an admin password change. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 20.2%.

Information Disclosure Hb7024Xt Firmware Hb7032Xt Firmware +67
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy