← Back

CVE-2014-1408

nvd nist
Published: Jan 10, 2014Modified: Apr 29, 2026

JSON object

Loading...
7.8
Vector
AV:N/AC:L/Au:N/C:C/I:N/A:N
Exploitability: 10.0 / Impact: 6.9
Source: NVD

Description

The Conceptronic C54APM access point with runtime code 1.26 has a default password of admin for the admin account, which makes it easier for remote attackers to obtain access via an HTTP request, as demonstrated by stored XSS attacks.

Affected (2)

Conceptronic
2 products
C54apm Firmware
C54apm
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
C54apm Firmware
Version 1.26
C54apm
Version v2

Related CWEs

CWE-255
CWE-255

References (4)

Source: cve@mitre.org
ExploitVendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.