Huawei D100

CPE Details

Huawei D100
huawei
d100
-
2021-11-05
13h58 +00:00
2021-12-13
19h07 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:h:huawei:d100:-:*:*:*:*:*:*:*

Informations

Vendor

huawei

Product

d100

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2009-2271 2009-07-01 10h26 +00:00 The Huawei D100 has (1) a certain default administrator password for the web interface, and does not force a password change; and has (2) a default password of admin for the admin account in the telnet interface; which makes it easier for remote attackers to obtain access.
10
CVE-2009-2272 2009-07-01 10h26 +00:00 The Huawei D100 stores the administrator's account name and password in cleartext in a cookie, which allows context-dependent attackers to obtain sensitive information by (1) reading a cookie file, by (2) sniffing the network for HTTP headers, and possibly by using unspecified other vectors.
7.5
High
CVE-2009-2273 2009-07-01 10h26 +00:00 The default configuration of the Wi-Fi component on the Huawei D100 does not use encryption, which makes it easier for remote attackers to obtain sensitive information by sniffing the network.
5
CVE-2009-2274 2009-07-01 10h26 +00:00 The Huawei D100 allows remote attackers to obtain sensitive information via a direct request to (1) lan_status_adv.asp, (2) wlan_basic_cfg.asp, or (3) lancfg.asp in en/, related to use of JavaScript to protect against reading file contents.
7.8