Ateme: >> Flamingo Xl Firmware >> 3.6.20 Security Vulnerabilities
Anevia Flamingo XL/XS 3.6.20 contains a critical vulnerability with weak default administrative credentials that can be easily guessed. Attackers can leverage these hard-coded credentials to gain full remote system control without complex authentication mechanisms.
CVSS Score
9.8
EPSS Score
0.005
Published
2025-12-30
An issue in Ateme Flamingo XL v.3.6.20 and XS v.3.6.5 allows a remote authenticated attacker to execute arbitrary code and cause a denial of service via a the session expiration function.
CVSS Score
8.8
EPSS Score
0.012
Published
2023-06-26