Aggregates CVE and security vulnerability intelligence across all connectize-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Disclosed issues often relate to vendor risk cross-site scripting and vendor risk csrf; exposure may include vendor impact session compromise in vendor surface production workloads contexts.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-24052 | An issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via the change password functionality as it does not prompt for the current password. | [email protected] | 9.8 | 0.73% | 2023-12-04 | 2024-11-21 |
| CVE-2023-24051 | A client side rate limit issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via brute force style attacks. | [email protected] | 9.8 | 0.73% | 2023-12-04 | 2024-11-21 |
| CVE-2023-24050 | Cross Site Scripting (XSS) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary code via crafted string when setting the Wi-Fi password in the admin panel. | [email protected] | 5.4 | 0.43% | 2023-12-04 | 2024-11-21 |
| CVE-2023-24049 | An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges on the device via poor credential management. | [email protected] | 9.8 | 0.73% | 2023-12-04 | 2025-05-29 |
| CVE-2023-24048 | Cross Site Request Forgery (CSRF) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via crafted GET request to /man_password.htm. | [email protected] | 8.8 | 0.35% | 2023-12-04 | 2024-11-21 |
| CVE-2023-24047 | An Insecure Credential Management issue discovered in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain escalated privileges via use of weak hashing algorithm. | [email protected] | 6.8 | 0.37% | 2023-12-04 | 2024-11-21 |
| CVE-2023-24046 | An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary commands via use of a crafted string in the ping utility. | [email protected] | 6.8 | 0.62% | 2023-12-04 | 2024-11-21 |