Vulnerabilities (CVE)

Filtered by vendor Airangel Subscribe
Filtered by product Hsmx-app-1000
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-40521 1 Airangel 10 Hsmx-app-100, Hsmx-app-1000, Hsmx-app-1000 Firmware and 7 more 2024-11-21 10.0 HIGH 9.8 CRITICAL
Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution.
CVE-2021-40520 1 Airangel 10 Hsmx-app-100, Hsmx-app-1000, Hsmx-app-1000 Firmware and 7 more 2024-11-21 5.0 MEDIUM 9.8 CRITICAL
Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials.
CVE-2021-40519 1 Airangel 10 Hsmx-app-100, Hsmx-app-1000, Hsmx-app-1000 Firmware and 7 more 2024-11-21 6.4 MEDIUM 10.0 CRITICAL
Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials.
CVE-2021-40518 1 Airangel 10 Hsmx-app-100, Hsmx-app-1000, Hsmx-app-1000 Firmware and 7 more 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
Airangel HSMX Gateway devices through 5.2.04 allow CSRF.
CVE-2021-40517 1 Airangel 10 Hsmx-app-100, Hsmx-app-1000, Hsmx-app-1000 Firmware and 7 more 2024-11-21 3.5 LOW 5.4 MEDIUM
Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. XSS Payload is placed in the name column of the updates table using database access.