CVE-2021-40520

CRITICAL

Airangel HSMX Gateway <5.2.04 - Info Disclosure

Title source: llm
STIX 2.1

Description

Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials.

References (2)

Scores

CVSS v3 9.8
EPSS 0.0040
EPSS Percentile 61.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-521
Status published
Products (5)
airangel/hsmx-app-1000_firmware < 5.2.04
airangel/hsmx-app-100_firmware < 5.2.04
airangel/hsmx-app-20000_firmware < 5.2.04
airangel/hsmx-app-25_firmware < 5.2.04
airangel/hsmx-app-5000_firmware < 5.2.04
Published Nov 10, 2021
Tracked Since Feb 18, 2026