CyberSec.Space Logo
Back to CVE Browser

CVE-2021-40519

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0260%
EPSS Percentile27.68th
PublishedNov 10, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials.

Affected Platforms (CPE)

πŸ’»
Airangel

Hsmx App 25 Firmware

<= 5.2.04
πŸ’»
Airangel

Hsmx App 100 Firmware

<= 5.2.04
πŸ’»
Airangel

Hsmx App 1000 Firmware

<= 5.2.04
πŸ’»
Airangel

Hsmx App 5000 Firmware

<= 5.2.04
πŸ’»
Airangel

Hsmx App 20000 Firmware

<= 5.2.04

References & Advisories

πŸ”— http://etizazmohsin.com/hsmx.html#database
πŸ”— https://airangel.com/hsmx-gateway/
πŸ”— http://etizazmohsin.com/hsmx.html#database
πŸ”— https://airangel.com/hsmx-gateway/

Related Vulnerabilities

CVE-2021-217710.0

Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization (component: Gateway). The supported version tha...

CVE-2021-2879910.0

An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 (Hybrid Backup Sync. ) If exploited, th...

CVE-2021-2732910.0

Friendica 2021.01 allows SSRF via parse_url?binurl= for DNS lookups or HTTP requests to arbitrary domain names.

CVE-2021-2099810.0

In multiple managed switches by WAGO in different versions without authorization and with specially crafted packets it is possible...