Bypassing Access Restriction to Change Administrator Password in Toshiba Home Gateway HEM-GW16A and HEM-GW26A Firmware

Bypassing Access Restriction to Change Administrator Password in Toshiba Home Gateway HEM-GW16A and HEM-GW26A Firmware

CVE-2017-2235 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier. Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier allows an attacker to bypass access restriction to change the administrator account password via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.