PT-2024-19102 · Unknown · Hgw-Bl1500Hm

Chuya Hayakawa

Published

2024-03-24

Updated

2025-09-19

CVE-2024-21865

CVSS v3.1

6.5

Medium

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions HGW BL1500HM versions 002.001.013 and earlier

Description The issue is related to the use of weak credentials. A network-adjacent unauthenticated attacker may connect to the product via SSH and use a shell.

Recommendations For HGW BL1500HM versions 002.001.013 and earlier, consider changing the default credentials to stronger ones and restricting SSH access to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1391CWE-521

Related Identifiers

CVE-2024-21865

Affected Products

Hgw-Bl1500Hm

PT-2024-19102 · Unknown · Hgw-Bl1500Hm

CVE-2024-21865

Weakness Enumeration

Related Identifiers

Affected Products

References · 8