Skip to main content

Mu553S Firmware

3 CVEs product

Monthly

CVE-2017-13724 MEDIUM POC This Month

On the Axesstel MU553S MU55XS-V1.14, there is a Stored Cross Site Scripting vulnerability in the APN parameter under the "Basic Settings" page. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Mu553S Firmware
NVD
CVSS 3.0
5.4
EPSS
0.2%
CVE-2017-11351 CRITICAL Act Now

Axesstel MU553S MU55XS-V1.14 devices have a default password of admin for the admin account. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Mu553S Firmware
NVD
CVSS 3.0
9.8
EPSS
0.3%
CVE-2017-11350 HIGH This Week

Cross-Site Request Forgery (CSRF) exists in cgi-bin/ConfigSet on Axesstel MU553S MU55XS-V1.14 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Mu553S Firmware
NVD
CVSS 3.0
8.8
EPSS
0.1%
EPSS 0% CVSS 5.4
MEDIUM POC This Month

On the Axesstel MU553S MU55XS-V1.14, there is a Stored Cross Site Scripting vulnerability in the APN parameter under the "Basic Settings" page. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Mu553S Firmware
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

Axesstel MU553S MU55XS-V1.14 devices have a default password of admin for the admin account. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Mu553S Firmware
NVD
EPSS 0% CVSS 8.8
HIGH This Week

Cross-Site Request Forgery (CSRF) exists in cgi-bin/ConfigSet on Axesstel MU553S MU55XS-V1.14 devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Mu553S Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy