Hard-coded Credentials Vulnerability in Toshiba Home Gateway HEM-GW16A and HEM-GW26A

Hard-coded Credentials Vulnerability in Toshiba Home Gateway HEM-GW16A and HEM-GW26A

CVE-2017-2236 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier, Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier uses hard-coded credentials, which may allow attackers to perform operations on device with administrative privileges.

Learn more about our Web Application Penetration Testing UK.