CVE-2009-4197

CVSS 4.7 - MEDIUM
Description

rpwizPppoe.htm in Huawei MT882 V100R002B020 ARG-T running firmware 3.7.9.98 contains a form that does not disable the autocomplete setting for the password parameter, which makes it easier for local users or physically proximate attackers to obtain the password from web browsers that support autocomplete.

Affected Products
3
Vendor Product Version
huawei mt882_v100t002b020_arg-t firmware_3.7.9.98
huawei mt882_modem_firmware 3.7.9.98
huawei mt882_modem v100r002b020_arg-t
References
http://www.exploit-db.com/exploits/10276
http://www.securityfocus.com/bid/37194
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
http://www.exploit-db.com/exploits/10276
http://www.securityfocus.com/bid/37194
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
Weakness Types
NVD-CWE-Other
CVE Information
CVE ID:
CVE-2009-4197
Published:
2009-12-04
Modified:
2026-04-23
CVSS Score:
4.7
Severity:
MEDIUM
Vector:
AV:L/AC:M/Au:N/C:C/I:N/A:N
Affected Vendors
huawei
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL