CVE-2024-21865

Summary

HGW BL1500HM Ver 002.001.013 and earlier contains a use of week credentials issue. A network-adjacent unauthenticated attacker may connect to the product via SSH and use a shell.

Affected Software

VendorProductVersion RangeStatus
KDDI CORPORATIONHGW BL1500HMVer 002.001.013 and earlieraffected

Weaknesses

  • CWE-1391: Use of weak credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References