cvedb.io
CVE-2018-16201
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2019-01-09T23:29:04.887 · Last modified 2026-06-17T01:43:52.923

Summary

Toshiba Home gateway HEM-GW16A 1.2.9 and earlier, Toshiba Home gateway HEM-GW26A 1.2.9 and earlier uses hard-coded credentials, which may allow an attacker on the same network segment to login to the administrators settings screen and change the configuration or execute arbitrary OS commands.

Affected products

toshiba — hem-gw16a_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when toshiba ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.