CVE-2023-49253

CVE-2023-49253: Predefined root password

Vendor Hongdian
Product H8951-4G-ESP
Weakness CWE-798 · Hardcoded credentials
Published January 12, 2024
Last update June 20, 2025

CVSS base score

What the vulnerability does

01Description

Root user password is hardcoded into the device and cannot be changed in the user interface.

Key dates

02Disclosure timeline

January 12, 2024 CVE published
June 20, 2025 Record updated