Lucene search
K

14 matches found

CVE
CVE
added 2025/11/25 12:0 a.m.12 views

CVE-2025-63729

CVE-2025-63729 affects Syrotech SY-GPON-1110-WDONT SYRO_3.7L_3.1.02-240517. The vulnerability allows extraction of SSL private key, CA certificate, SSL certificate, and client certificates stored in PEM format in the firmware’s etc folder. Root cause details are not explicitly provided beyond the...

9CVSS6.6AI score0.00079EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2024/07/26 1:15 p.m.22 views

CVE-2024-41692

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by accessing the root shell on the vulnerable system. Successful exploitation of this...

8.6CVSS0.00271EPSS
Exploits0References2
OSV
OSV
added 2024/07/26 12:15 p.m.4 views

CVE-2024-41686

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to improper implementation of password policies. A local attacker could exploit this by creating password that do not adhere to the defined security standards/policy on the vulnerable system. Successful exploitation of this...

3.3CVSS5.8AI score
Exploits0References2
CVE
CVE
added 2024/07/26 12:11 p.m.73 views

CVE-2024-41692

The CVE-2024-41692 issue affects SyroTech SY-GPON-1110-WDONT Router. It stems from root terminal access on the serial interface without proper access control, enabling an attacker with physical access to reach the root shell and potentially run arbitrary commands with root privileges. The linked ...

8.6CVSS7.1AI score0.00271EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/07/26 12:11 p.m.29 views

CVE-2024-41692 Incorrect Access Control Vulnerability

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by accessing the root shell on the vulnerable system. Successful exploitation of this...

8.6CVSS0.00271EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/26 12:6 p.m.25 views

CVE-2024-41691 Insecure Storage of Sensitive Information Vulnerability

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to storing of FTP credentials in plaintext within the SquashFS-root filesystem associated with the router's firmware. An attacker with physical access could exploit this by extracting the firmware and reverse engineer the binary...

7CVSS6.8AI score0.00152EPSS
Exploits0References1
CVE
CVE
added 2024/07/26 12:6 p.m.54 views

CVE-2024-41691

CVE-2024-41691 affects SyroTech SY-GPON-1110-WDONT router. Affected component: firmware SquashFS-root stores FTP credentials in plaintext, enabling an attacker with physical access to extract firmware, reverse‑engineer data, and access the FTP server credentials. Impact: unauthorized FTP access a...

7CVSS6.5AI score0.00152EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/07/26 11:59 a.m.21 views

CVE-2024-41689 Hard-coded Credentials Vulnerability

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to unencrypted storing of WPA/ WPS credentials within the router's firmware/ database. An attacker with physical access could exploit this by extracting the firmware and reverse engineer the binary data to access the plaintext WP...

5.2CVSS0.00153EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/26 11:56 a.m.18 views

CVE-2024-41688 Cleartext Storage of Sensitive Information Vulnerability

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due lack of encryption in storing of usernames and passwords within the router's firmware/ database. An attacker with physical access could exploit this by extracting the firmware and reverse engineer the binary data to access the...

7CVSS0.00111EPSS
Exploits0References1
CVE
CVE
added 2024/07/26 11:56 a.m.48 views

CVE-2024-41688

The CVE-2024-41688 entry refers to a cleartext storage vulnerability in the SyroTech SY-GPON-1110-WDONT Router, caused by lack of encryption when storing usernames and passwords in firmware/database. Exploitation requires physical access: an attacker can extract firmware, reverse engineer the bin...

7CVSS6.8AI score0.00111EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/26 11:50 a.m.27 views

CVE-2024-41687 Cleartext Transmission of Sensitive Information Vulnerability

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to transmission of password in plain text. A remote attacker could exploit this vulnerability by intercepting transmission within an HTTP session on the vulnerable system. Successful exploitation of this vulnerability could allow...

8.6CVSS7.2AI score0.00311EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/26 11:34 a.m.22 views

CVE-2024-41684 Cookie Without Secure Flag Set Vulnerability

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to missing secure flag for the session cookies associated with the router's web management interface. An attacker with remote access could exploit this by intercepting transmission within an HTTP session on the vulnerable system...

6.9CVSS0.00207EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/07/26 12:0 a.m.6 views

PT-2024-29506 · Syrotech · Syrotech Sy-Gpon-1110-Wdont Router

Name of the Vulnerable Software and Affected Versions: SyroTech SY-GPON-1110-WDONT Router affected versions not specified Description: The issue arises from the improper implementation of password policies. A local attacker could exploit this by creating passwords that do not adhere to the define...

7.3CVSS6.5AI score0.00157EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/07/26 12:0 a.m.6 views

SyroTech SY-GPON-1110-WDONT 安全漏洞

The SyroTech SY-GPON-1110-WDONT is a wireless router from SyroTech. A security vulnerability exists in the SyroTech SY-GPON-1110-WDONT that stems from improper implementation of a password policy. An attacker can exploit this vulnerability to launch further attacks on the system...

7.3CVSS6.9AI score0.00157EPSS
Exploits0References2
Rows per page
Query Builder