CVE-2018-6312
HIGHFoxconn femtocell FEMTO AP-FC4064-T - Weak Default Password
Title source: llmDescription
A privileged account with a weak default password on the Foxconn femtocell FEMTO AP-FC4064-T version AP_GT_B38_5.8.3lb15-W47 LTE Build 15 can be used to turn on the TELNET service via the web interface, which allows root login without any password. This vulnerability will lead to full system compromise and disclosure of user communications. The foxconn account with an 8-character lowercase alphabetic password can be used.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://gist.github.com/DrmnSamoLiu/cd1d6fa59501f161616686296aa4a6c8
Scores
CVSS v3
7.2
EPSS
0.0132
EPSS Percentile
67.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-521
Status
published
Products (1)
foxconn/ap-fc4064-t_firmware
ap_gt_b38_5.8.3lb15-w47_lte
Published
Mar 10, 2018
Tracked Since
Feb 18, 2026