cgi-bin/sysconf.cgi on the Axesstel MV 410R allows remote attackers to cause a denial of service (configuration reset) via a RESTORE=RESTORE query string.
Max CVSS
7.8
EPSS Score
0.77%
Published
2009-07-05
Updated
2018-10-10
The web interface on the Axesstel MV 410R relies on client-side JavaScript code to validate input, which allows remote attackers to send crafted data, and possibly have unspecified other impact, via a client that does not process JavaScript.
Max CVSS
7.5
EPSS Score
0.48%
Published
2009-07-05
Updated
2018-10-10
The Axesstel MV 410R allows remote attackers to cause a denial of service via a flood of SYN packets, a related issue to CVE-1999-0116.
Max CVSS
7.8
EPSS Score
0.33%
Published
2009-07-05
Updated
2018-10-10
The Axesstel MV 410R has a certain default administrator password, and does not force a password change, which makes it easier for remote attackers to obtain access.
Max CVSS
10.0
EPSS Score
0.76%
Published
2009-07-05
Updated
2018-10-10
4 vulnerabilities found