Hard-coded Credentials Vulnerability in Toshiba Home Gateway HEM-GW16A and HEM-GW26A

Hard-coded Credentials Vulnerability in Toshiba Home Gateway HEM-GW16A and HEM-GW26A

CVE-2018-16201 · HIGH Severity

AV:A/AC:L/AU:N/C:C/I:C/A:C

Toshiba Home gateway HEM-GW16A 1.2.9 and earlier, Toshiba Home gateway HEM-GW26A 1.2.9 and earlier uses hard-coded credentials, which may allow an attacker on the same network segment to login to the administrators settings screen and change the configuration or execute arbitrary OS commands.

Learn more about our Network Penetration Testing.