Search
Find a vulnerability
Search criteria
10 vulnerabilities found for hsmx-app-100_firmware by airangel
CVE-2021-40520 (GCVE-0-2021-40520)
Vulnerability from nvd – Published: 2021-11-10 16:06 – Updated: 2024-08-04 02:44
VLAI
Summary
Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://airangel.com/hsmx-gateway/ | x_refsource_MISC |
| http://etizazmohsin.com/hsmx.html#ssh | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:44:10.789Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://etizazmohsin.com/hsmx.html#ssh"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-10T16:06:12.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://etizazmohsin.com/hsmx.html#ssh"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-40520",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://airangel.com/hsmx-gateway/",
"refsource": "MISC",
"url": "https://airangel.com/hsmx-gateway/"
},
{
"name": "http://etizazmohsin.com/hsmx.html#ssh",
"refsource": "MISC",
"url": "http://etizazmohsin.com/hsmx.html#ssh"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-40520",
"datePublished": "2021-11-10T16:06:12.000Z",
"dateReserved": "2021-09-05T00:00:00.000Z",
"dateUpdated": "2024-08-04T02:44:10.789Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-40517 (GCVE-0-2021-40517)
Vulnerability from nvd – Published: 2021-11-10 16:01 – Updated: 2024-08-04 02:44
VLAI
Summary
Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. XSS Payload is placed in the name column of the updates table using database access.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://airangel.com/hsmx-gateway/ | x_refsource_MISC |
| http://etizazmohsin.com/hsmx.html#xss | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:44:10.802Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://etizazmohsin.com/hsmx.html#xss"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. XSS Payload is placed in the name column of the updates table using database access."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-10T16:01:55.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://etizazmohsin.com/hsmx.html#xss"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-40517",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. XSS Payload is placed in the name column of the updates table using database access."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://airangel.com/hsmx-gateway/",
"refsource": "MISC",
"url": "https://airangel.com/hsmx-gateway/"
},
{
"name": "http://etizazmohsin.com/hsmx.html#xss",
"refsource": "MISC",
"url": "http://etizazmohsin.com/hsmx.html#xss"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-40517",
"datePublished": "2021-11-10T16:01:55.000Z",
"dateReserved": "2021-09-05T00:00:00.000Z",
"dateUpdated": "2024-08-04T02:44:10.802Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-40521 (GCVE-0-2021-40521)
Vulnerability from nvd – Published: 2021-11-10 15:55 – Updated: 2024-08-04 02:44
VLAI
Summary
Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://airangel.com/hsmx-gateway/ | x_refsource_MISC |
| http://etizazmohsin.com/hsmx.html#rce | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:44:10.841Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://etizazmohsin.com/hsmx.html#rce"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-10T15:55:23.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://etizazmohsin.com/hsmx.html#rce"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-40521",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://airangel.com/hsmx-gateway/",
"refsource": "MISC",
"url": "https://airangel.com/hsmx-gateway/"
},
{
"name": "http://etizazmohsin.com/hsmx.html#rce",
"refsource": "MISC",
"url": "http://etizazmohsin.com/hsmx.html#rce"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-40521",
"datePublished": "2021-11-10T15:55:23.000Z",
"dateReserved": "2021-09-05T00:00:00.000Z",
"dateUpdated": "2024-08-04T02:44:10.841Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-40519 (GCVE-0-2021-40519)
Vulnerability from nvd – Published: 2021-11-10 15:57 – Updated: 2024-08-04 02:44
VLAI
Summary
Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://airangel.com/hsmx-gateway/ | x_refsource_MISC |
| http://etizazmohsin.com/hsmx.html#database | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:44:10.848Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://etizazmohsin.com/hsmx.html#database"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-10T15:57:09.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://etizazmohsin.com/hsmx.html#database"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-40519",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://airangel.com/hsmx-gateway/",
"refsource": "MISC",
"url": "https://airangel.com/hsmx-gateway/"
},
{
"name": "http://etizazmohsin.com/hsmx.html#database",
"refsource": "MISC",
"url": "http://etizazmohsin.com/hsmx.html#database"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-40519",
"datePublished": "2021-11-10T15:57:09.000Z",
"dateReserved": "2021-09-05T00:00:00.000Z",
"dateUpdated": "2024-08-04T02:44:10.848Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-40518 (GCVE-0-2021-40518)
Vulnerability from nvd – Published: 2021-11-10 15:52 – Updated: 2024-08-04 02:44
VLAI
Summary
Airangel HSMX Gateway devices through 5.2.04 allow CSRF.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://airangel.com/hsmx-gateway/ | x_refsource_MISC |
| http://etizazmohsin.com/hsmx.html#csrf | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:44:10.851Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://etizazmohsin.com/hsmx.html#csrf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Airangel HSMX Gateway devices through 5.2.04 allow CSRF."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-10T15:52:55.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://etizazmohsin.com/hsmx.html#csrf"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-40518",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Airangel HSMX Gateway devices through 5.2.04 allow CSRF."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://airangel.com/hsmx-gateway/",
"refsource": "MISC",
"url": "https://airangel.com/hsmx-gateway/"
},
{
"name": "http://etizazmohsin.com/hsmx.html#csrf",
"refsource": "MISC",
"url": "http://etizazmohsin.com/hsmx.html#csrf"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-40518",
"datePublished": "2021-11-10T15:52:55.000Z",
"dateReserved": "2021-09-05T00:00:00.000Z",
"dateUpdated": "2024-08-04T02:44:10.851Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-40520 (GCVE-0-2021-40520)
Vulnerability from cvelistv5 – Published: 2021-11-10 16:06 – Updated: 2024-08-04 02:44
VLAI
Summary
Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://airangel.com/hsmx-gateway/ | x_refsource_MISC |
| http://etizazmohsin.com/hsmx.html#ssh | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:44:10.789Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://etizazmohsin.com/hsmx.html#ssh"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-10T16:06:12.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://etizazmohsin.com/hsmx.html#ssh"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-40520",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://airangel.com/hsmx-gateway/",
"refsource": "MISC",
"url": "https://airangel.com/hsmx-gateway/"
},
{
"name": "http://etizazmohsin.com/hsmx.html#ssh",
"refsource": "MISC",
"url": "http://etizazmohsin.com/hsmx.html#ssh"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-40520",
"datePublished": "2021-11-10T16:06:12.000Z",
"dateReserved": "2021-09-05T00:00:00.000Z",
"dateUpdated": "2024-08-04T02:44:10.789Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-40517 (GCVE-0-2021-40517)
Vulnerability from cvelistv5 – Published: 2021-11-10 16:01 – Updated: 2024-08-04 02:44
VLAI
Summary
Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. XSS Payload is placed in the name column of the updates table using database access.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://airangel.com/hsmx-gateway/ | x_refsource_MISC |
| http://etizazmohsin.com/hsmx.html#xss | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:44:10.802Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://etizazmohsin.com/hsmx.html#xss"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. XSS Payload is placed in the name column of the updates table using database access."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-10T16:01:55.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://etizazmohsin.com/hsmx.html#xss"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-40517",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting. XSS Payload is placed in the name column of the updates table using database access."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://airangel.com/hsmx-gateway/",
"refsource": "MISC",
"url": "https://airangel.com/hsmx-gateway/"
},
{
"name": "http://etizazmohsin.com/hsmx.html#xss",
"refsource": "MISC",
"url": "http://etizazmohsin.com/hsmx.html#xss"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-40517",
"datePublished": "2021-11-10T16:01:55.000Z",
"dateReserved": "2021-09-05T00:00:00.000Z",
"dateUpdated": "2024-08-04T02:44:10.802Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-40519 (GCVE-0-2021-40519)
Vulnerability from cvelistv5 – Published: 2021-11-10 15:57 – Updated: 2024-08-04 02:44
VLAI
Summary
Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://airangel.com/hsmx-gateway/ | x_refsource_MISC |
| http://etizazmohsin.com/hsmx.html#database | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:44:10.848Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://etizazmohsin.com/hsmx.html#database"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-10T15:57:09.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://etizazmohsin.com/hsmx.html#database"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-40519",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Airangel HSMX Gateway devices through 5.2.04 have Hard-coded Database Credentials."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://airangel.com/hsmx-gateway/",
"refsource": "MISC",
"url": "https://airangel.com/hsmx-gateway/"
},
{
"name": "http://etizazmohsin.com/hsmx.html#database",
"refsource": "MISC",
"url": "http://etizazmohsin.com/hsmx.html#database"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-40519",
"datePublished": "2021-11-10T15:57:09.000Z",
"dateReserved": "2021-09-05T00:00:00.000Z",
"dateUpdated": "2024-08-04T02:44:10.848Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-40521 (GCVE-0-2021-40521)
Vulnerability from cvelistv5 – Published: 2021-11-10 15:55 – Updated: 2024-08-04 02:44
VLAI
Summary
Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://airangel.com/hsmx-gateway/ | x_refsource_MISC |
| http://etizazmohsin.com/hsmx.html#rce | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:44:10.841Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://etizazmohsin.com/hsmx.html#rce"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-10T15:55:23.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://etizazmohsin.com/hsmx.html#rce"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-40521",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Airangel HSMX Gateway devices through 5.2.04 allow Remote Code Execution."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://airangel.com/hsmx-gateway/",
"refsource": "MISC",
"url": "https://airangel.com/hsmx-gateway/"
},
{
"name": "http://etizazmohsin.com/hsmx.html#rce",
"refsource": "MISC",
"url": "http://etizazmohsin.com/hsmx.html#rce"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-40521",
"datePublished": "2021-11-10T15:55:23.000Z",
"dateReserved": "2021-09-05T00:00:00.000Z",
"dateUpdated": "2024-08-04T02:44:10.841Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-40518 (GCVE-0-2021-40518)
Vulnerability from cvelistv5 – Published: 2021-11-10 15:52 – Updated: 2024-08-04 02:44
VLAI
Summary
Airangel HSMX Gateway devices through 5.2.04 allow CSRF.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://airangel.com/hsmx-gateway/ | x_refsource_MISC |
| http://etizazmohsin.com/hsmx.html#csrf | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T02:44:10.851Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://etizazmohsin.com/hsmx.html#csrf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Airangel HSMX Gateway devices through 5.2.04 allow CSRF."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-10T15:52:55.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://airangel.com/hsmx-gateway/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://etizazmohsin.com/hsmx.html#csrf"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-40518",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Airangel HSMX Gateway devices through 5.2.04 allow CSRF."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://airangel.com/hsmx-gateway/",
"refsource": "MISC",
"url": "https://airangel.com/hsmx-gateway/"
},
{
"name": "http://etizazmohsin.com/hsmx.html#csrf",
"refsource": "MISC",
"url": "http://etizazmohsin.com/hsmx.html#csrf"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-40518",
"datePublished": "2021-11-10T15:52:55.000Z",
"dateReserved": "2021-09-05T00:00:00.000Z",
"dateUpdated": "2024-08-04T02:44:10.851Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}