CVE-2003-1442

critical

Description

The web administration page for the Ericsson HM220dp ADSL modem does not require authentication, which could allow remote attackers to gain access from the LAN side.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/11290

http://marc.info/?l=bugtraq&m=104619331706574&w=2

http://archives.neohapsis.com/archives/bugtraq/2003-02/0127.html

Details

Source: Mitre, NVD

Published: 2003-12-31

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.02356

Detections

Analytics