130 matches found
CVE-2024-4232
CVE-2024-4232 affects Digisol Router DG-GR1321 (hardware 3.7L; firmware v3.2.02). The root cause is storing passwords in plaintext due to lack of encryption/hash in the firmware/database. Attack requires physical access: an attacker could extract the firmware, reverse‑engineer the binary data, an...
CVE-2024-4231 Incorrect Access Control Vulnerability in Digisol Router
This vulnerability exists in Digisol Router DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02 due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by identifying UART pins and accessing the root...
CVE-2024-4231
CVE-2024-4231 affects Digisol Router DG-GR1321 (Hardware 3.7L; Firmware v3.2.02). The root terminal is accessible via a serial interface without proper access control. An attacker with physical access could identify UART pins and gain a root shell, potentially accessing sensitive information. The...
CVE-2024-4231 Incorrect Access Control Vulnerability in Digisol Router
This vulnerability exists in Digisol Router DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02 due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by identifying UART pins and accessing the root...
CVE-2024-2257 Password Policy Bypass Vulnerability in Digisol Router
This vulnerability exists in Digisol Router DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02 due to improper implementation of password policies. An attacker with physical access could exploit this by creating password that do not adhere to the defined security standards/policy on the...
CVE-2024-2257 Password Policy Bypass Vulnerability in Digisol Router
This vulnerability exists in Digisol Router DG-GR1321: Hardware version 3.7L; Firmware version : v3.2.02 due to improper implementation of password policies. An attacker with physical access could exploit this by creating password that do not adhere to the defined security standards/policy on the...
CVE-2024-2257
Summary of CVE-2024-2257 (Digisol Router DG-GR1321) : The vulnerability affects Digisol Router DG-GR1321 (hardware version 3.7L; firmware v3.2.02). It arises from improper implementation of password policies, enabling an attacker with physical access to craft passwords that do not conform to the ...
PT-2024-29868 · Digisol · Digisol Router
Name of the Vulnerable Software and Affected Versions: Digisol Router DG-GR1321 version v3.2.02 Description: This issue is caused by the lack of encryption or hashing in storing passwords within the router's firmware/database. An attacker with physical access could exploit this by extracting the...
PT-2024-29859
Name of the Vulnerable Software and Affected Versions: Digisol Router DG-GR1321 version v3.2.02 Description: This issue exists due to the presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by identifying UART...
PT-2024-19490 · Digisol · Digisol Router
Name of the Vulnerable Software and Affected Versions: Digisol Router DG-GR1321 version v3.2.02 Description: This issue is caused by the improper implementation of password policies. An attacker with physical access could exploit this by creating passwords that do not adhere to the defined securi...
CVE-2020-35262
Cross Site Scripting XSS vulnerability in Digisol DG-HR3400 can be exploited via the NTP server name in Time and date module and "Keyword" in URL Filter...
Cross site scripting
Cross Site Scripting XSS vulnerability in Digisol DG-HR3400 can be exploited via the NTP server name in Time and date module and "Keyword" in URL Filter...
CVE-2020-35262
Cross Site Scripting XSS vulnerability in Digisol DG-HR3400 can be exploited via the NTP server name in Time and date module and "Keyword" in URL Filter...
CVE-2020-35262
CVE-2020-35262 affects Digisol DG-HR3400 with a Cross Site Scripting (XSS) vulnerability exploitable via the NTP configuration server name in the Time and date module and the Keyword field in URL Filter. Public details and CVSS metrics in NVD indicate a network-exploitable flaw (CVSS v3.1 base sc...
Digisol Systems DG-HR3400 Cross-Site Scripting Vulnerability
Digisol Systems DG-HR3400 is a wireless router from Digisol Systems, India. The Digisol DG-HR3400 suffers from a cross-site scripting vulnerability that originates from the NTP server name in the system time and the "keyword" in the URL filter...
Exploit for Cross-site Scripting in Digisol Dg-Hr3400_Firmware
CVE-2020-35262: Stored XSS in Digisol DG-HR3400 Router...
Command Execution Vulnerability in 1GE+ WIFI Routers
DIGISOL provides complete integrated communication system solutions. Command execution vulnerability exists in 1GE+ WIFI router. An attacker can log into the backend via a weak password and remotely execute commands...
DIGISOL SYSTEMS Wireless Wifi Home Router HR-3300 Cross-Site Scripting Vulnerability
DIGISOL SYSTEMS Wireless Wifi Home Router HR-3300 is a home wireless router from DIGISOL SYSTEMS India. A cross-site scripting vulnerability exists in the DIGISOL SYSTEMS Wireless Wifi Home Router HR-3300. The vulnerability stems from the lack of proper validation of client data by the WEB...
CVE-2018-14027
Digisol Wireless Wifi Home Router HR-3300 allows XSS via the userid or password parameter to the admin login page...
Design/Logic Flaw
Digisol Wireless Wifi Home Router HR-3300 allows XSS via the userid or password parameter to the admin login page...