Vulnerability Details CVE-2014-8656
The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH have a default password of (1) admin for the admin account and (2) compalbn for the root account, which makes it easier for remote attackers to obtain access to certain sensitive information via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.164
EPSS Ranking 94.5%
CVSS Severity
CVSS v2 Score 10.0
References
- http://osvdb.org/show/osvdb/113836
- http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html
- http://www.exploit-db.com/exploits/35075
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5203.php
- http://osvdb.org/show/osvdb/113836
- http://packetstormsecurity.com/files/128860/CBN-CH6640E-CG6640E-Wireless-Gateway-XSS-CSRF-DoS-Disclosure.html
- http://www.exploit-db.com/exploits/35075
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5203.php
Products affected by CVE-2014-8656
-
cpe:2.3:a:compal_broadband_networks:firmware:ch6640-3.5.11.7-nosh
-
cpe:2.3:h:compal_broadband_networks:cg6640e_wireless_gateway:1.0
-
cpe:2.3:h:compal_broadband_networks:ch664oe_wireless_gateway:1.0