Yeyoumeng

**Name of the Vulnerable Software and Affected Versions** PrismX MX100 AP controller **Description** The PrismX MX100 AP controller developed by BROWAN COMMUNICATIONS has a flaw related to the use of hard-coded credentials. This allows unauthenticated remote attackers to gain access to the database using these credentials, which are stored within the firmware. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PrismX MX100 AP controller (affected versions not specified) **Description** The PrismX MX100 AP controller developed by BROWAN COMMUNICATIONS has an arbitrary file upload issue. This allows remote attackers with sufficient privileges to upload and execute web shell backdoors, leading to arbitrary code execution on the server. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PrismX MX100 AP controller (affected versions not specified) **Description** The PrismX MX100 AP controller developed by BROWAN COMMUNICATIONS has a weakness related to credentials. This allows remote attackers who are already authenticated to obtain SMTP plaintext passwords through the web interface. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.