CVE-2014-1408

EUVD-2014-1485
The Conceptronic C54APM access point with runtime code 1.26 has a default password of admin for the admin account, which makes it easier for remote attackers to obtain access via an HTTP request, as demonstrated by stored XSS attacks.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
Affected Products (NVD)
VendorProductVersion
conceptronicc54apm_firmware
1.26
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://antoniovazquezblanco.github.io/docs/advisories/Advisory_C54APM_Multiple.pdf
http://download.conceptronic.net/manuals/C04-058_C54APM_v2.0_Quick_Guide_ML.pdf
http://antoniovazquezblanco.github.io/docs/advisories/Advisory_C54APM_Multiple.pdf
http://download.conceptronic.net/manuals/C04-058_C54APM_v2.0_Quick_Guide_ML.pdf