Lucene search

Aterm Hc100rc Firmware Security Vulnerabilities

cve

CVE-2018-0634

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter or bootmode parameter of a certain URL.

7.2CVSS

7.2AI Score

0.001EPSS

2019-01-09 11:29 PM

cve

CVE-2018-0635

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via filename parameter.

7.2CVSS

7.3AI Score

0.001EPSS

2019-01-09 11:29 PM

cve

CVE-2018-0636

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter of a certain URL, different URL from CVE-2018-0634.

7.2CVSS

7.2AI Score

0.001EPSS

2019-01-09 11:29 PM

cve

CVE-2018-0637

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via export.cgi encKey parameter.

7.2CVSS

7.3AI Score

0.001EPSS

2019-01-09 11:29 PM

cve

CVE-2018-0638

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via import.cgi encKey parameter.

7.2CVSS

7.3AI Score

0.001EPSS

2019-01-09 11:29 PM

cve

CVE-2018-0639

Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via tools_firmware.cgi date parameter, time parameter, and offset parameter.

7.2CVSS

7.3AI Score

0.001EPSS

2019-01-09 11:29 PM

cve

CVE-2018-0640

Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via netWizard.cgi date parameter, time parameter, and offset parameter.

7.2CVSS

7.3AI Score

0.001EPSS

2019-01-09 11:29 PM

cve

CVE-2018-0641

Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via tools_system.cgi date parameter, time parameter, and offset parameter.

7.2CVSS

7.3AI Score

0.001EPSS

2019-01-09 11:29 PM