Fxa3000 Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:contec:fxa3000_firmware:*:*:*:*:*:*:*:*
part: o version: * update: *
| Vendor | Contec (12d4c7df-5901-5f24-95ff-bbf411520843) |
|---|---|
| Product | Fxa3000 Firmware (fdcf2b32-d917-538c-8f22-b56c10fcb86f) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-36159 |
vulnerable | 2026-06-03 14:47:39.496703 |
Details available
Contec FXA3200 version 1.13 and under were discovered to contain a hard coded hash password for root stored in the component /etc/shadow. As the password strength is weak, it can be cracked in few minutes. Through this credential, a malicious actor can access the Wireless LAN Manager interface and open the telnet port then sniff the traffic or inject any malware.
Published: 2022-09-26T10:07:27.000Z
Updated: 2025-05-21T17:55:39.230Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-36158 |
vulnerable | 2026-06-03 14:47:39.490549 |
Details available
Contec FXA3200 version 1.13.00 and under suffers from Insecure Permissions in the Wireless LAN Manager interface which allows malicious actors to execute Linux commands with root privilege via a hidden web page (/usr/www/ja/mnt_cmd.cgi).
Published: 2022-09-26T10:07:23.000Z
Updated: 2025-05-21T16:08:48.872Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.