Novatel Wireless Mifi suffers from cross site request forgery, output encoding, gps enabling, and authentication vulnerabilities.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/85330/novatelmifi-xsrf.txt
Source: https://packetstormsecurity.com/files/85330/Novatel-Wireless-MiFi-Cross-Site-Request-Forgery.html