CVE-2022-29729

HIGH

Verizon 4G LTE Network Extender <GA4.38-0.4.038.2131 - Info Disclosure

Title source: llm

Description

Verizon 4G LTE Network Extender GA4.38 - V0.4.038.2131 utilizes a weak default admin password generation algorithm which generates passwords that are accessible to unauthenticated attackers via the webUI login page.

References (2)

[Vendor Advisory] https://www.verizon.com/

[Exploit, Third Party Advisory] https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5701.php

Scores

CVSS v3 7.5

EPSS 0.0086

EPSS Percentile 75.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-521

Status published

Products (2)

verizon/4g_lte_network_extender_firmware 0.4.038.2131

verizon/4g_lte_network_extender_firmware ga4.38

Published Jun 02, 2022

Tracked Since Feb 18, 2026