PLANEX Communications CS-W50HD
Approved changes feed: RSS · Atom
cpe:2.3:h:planex:cs-w50hd:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Planex (5e3975f2-d872-5cc3-afda-5e2c5ec3d4e0) |
|---|---|
| Product | Cs W50Hd (3176bcbf-b1f6-5f1d-865f-bb64bc4c60a8) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2017-12574 |
not_vulnerable | 2026-06-03 14:36:36.172737 |
Details available
An issue was discovered on PLANEX CS-W50HD devices with firmware before 030720. A hardcoded credential "supervisor:dangerous" was injected into web authentication database "/.htpasswd" during booting process, which allows attackers to gain unauthorized access and control the device completely; the account can't be modified or deleted.
Published: 2018-08-24T19:00:00.000Z
Updated: 2024-08-05T18:43:56.026Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-12573 |
not_vulnerable | 2026-06-03 14:36:36.172298 |
Details available
An issue was discovered on PLANEX CS-W50HD devices with firmware before 030720. The device has a command-injection vulnerability in the web management UI on NAS settings page "/cgi-bin/nasset.cgi". An attacker can send a crafted HTTP POST request to execute arbitrary code. Authentication is required before executing the attack.
Published: 2018-08-24T19:00:00.000Z
Updated: 2024-08-05T18:43:56.315Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.