Vulnerabilities (CVE)

Filtered by vendor Ee Subscribe
Filtered by product 4gee Wifi Mbb Firmware
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-14267 1 Ee 2 4gee Wifi Mbb, 4gee Wifi Mbb Firmware 2024-02-04 6.8 MEDIUM 8.8 HIGH
EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have CSRF, related to goform/AddNewProfile, goform/setWanDisconnect, goform/setSMSAutoRedirectSetting, goform/setReset, and goform/uploadBackupSettings.
CVE-2017-14268 1 Ee 2 4gee Wifi Mbb, 4gee Wifi Mbb Firmware 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have XSS in the sms_content parameter in a getSMSlist request.
CVE-2017-14269 1 Ee 2 4gee Wifi Mbb, 4gee Wifi Mbb Firmware 2024-02-04 5.0 MEDIUM 9.8 CRITICAL
EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices allow remote attackers to obtain sensitive information via a JSONP endpoint, as demonstrated by passwords and SMS content.