Lucene search
+L

4 matches found

Positive Technologies
Positive Technologies
added 2025/09/06 12:0 a.m.11 views

PT-2025-36367

Name of the Vulnerable Software and Affected Versions TP-Link AX10 versions prior to 1.2.1 TP-Link AX1500 versions prior to 1.3.11 Description A flaw exists in the CWMP CWMP/TR-069 binary of TP-Link AX10 and AX1500 routers that could allow an authenticated attacker to remotely execute arbitrary...

9CVSS6.7AI score0.09821EPSS
Exploits1References35
NVD
NVD
added 2020/12/30 12:15 a.m.22 views

CVE-2020-10209

Command Injection in the CPE WAN Management Protocol CWMP registration in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows man-in-the-middle attackers to execute arbitrary commands with root level privileges...

9.3CVSS8.6AI score0.02747EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/12/29 11:43 p.m.23 views

CVE-2020-10209

Command Injection in the CPE WAN Management Protocol CWMP registration in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows man-in-the-middle attackers to execute arbitrary commands with root level privileges...

8.6AI score0.02747EPSS
Exploits1References1
CNVD
CNVD
added 2015/01/12 12:0 a.m.3 views

TR-069 Auto Configuration Server Arbitrary Code Execution Vulnerability (CNVD-2015-00283)

TR-069 is the DSL Forum Technical Specification "CPE WAN Management Protocol CWMP", which defines the application layer protocol for remote management of end devices. An arbitrary code execution vulnerability exists in TR-069 Auto Configuration Server. A remote attacker can exploit this...

8.4AI score
Exploits0References1
Rows per page
Query Builder