MidnightBSD

Advisories for televes

CVE-2017-6530 MEDIUM

Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20 do not check password.shtml authorization, leading to Arbitrary password change.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
televes coaxdata_gateway_1gbps_firmware 1.02.0014_4.20
CVE-2017-6531 MEDIUM

On Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20, the backup/restore feature lacks access control, related to ReadFile.cgi and LoadCfgFile.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
televes coaxdata_gateway_1gbps_firmware 1.02.0014_4.20
CVE-2017-6532 MEDIUM

Televes COAXDATA GATEWAY 1Gbps devices doc-wifi-hgw_v1.02.0014 4.20 have cleartext credentials in /mib.db.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-522,

Products Affected

Vendor Product Version
televes coaxdata_gateway_1gbps_firmware 1.02.0014_4.20