Skip to main content

Hsmx App 20000 Firmware

5 CVEs product

Monthly

CVE-2021-40520 CRITICAL POC Act Now

Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Brute Force Hsmx App 25 Firmware Hsmx App 100 Firmware Hsmx App 1000 Firmware +2
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2021-40517 MEDIUM POC This Month

Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Hsmx App 25 Firmware Hsmx App 100 Firmware Hsmx App 1000 Firmware Hsmx App 5000 Firmware +1
NVD
CVSS 3.1
5.4
EPSS
0.5%
CVE-2021-40521 CRITICAL POC Act Now

Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Hsmx App 25 Firmware Hsmx App 100 Firmware Hsmx App 1000 Firmware Hsmx App 5000 Firmware +1
NVD
CVSS 3.1
9.8
EPSS
4.3%
CVE-2021-40519 CRITICAL POC Act Now

Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Hsmx App 25 Firmware Hsmx App 100 Firmware Hsmx App 1000 Firmware Hsmx App 5000 Firmware +1
NVD
CVSS 3.1
10.0
EPSS
1.1%
CVE-2021-40518 MEDIUM POC This Month

Airangel HSMX Gateway devices through 5.2.04 allow CSRF. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Hsmx App 25 Firmware Hsmx App 100 Firmware Hsmx App 1000 Firmware Hsmx App 5000 Firmware +1
NVD
CVSS 3.1
6.5
EPSS
0.4%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Brute Force Hsmx App 25 Firmware +4
NVD
EPSS 1% CVSS 5.4
MEDIUM POC This Month

Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Hsmx App 25 Firmware Hsmx App 100 Firmware +3
NVD
EPSS 4% CVSS 9.8
CRITICAL POC Act Now

Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Hsmx App 25 Firmware Hsmx App 100 Firmware +3
NVD
EPSS 1% CVSS 10.0
CRITICAL POC Act Now

Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Hsmx App 25 Firmware Hsmx App 100 Firmware +3
NVD
EPSS 0% CVSS 6.5
MEDIUM POC This Month

Airangel HSMX Gateway devices through 5.2.04 allow CSRF. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Hsmx App 25 Firmware Hsmx App 100 Firmware +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy