Lucene search
+L

580 matches found

redhatcve
redhatcve
added 2025/05/22 11:8 p.m.10 views

CVE-2022-36200

In FiberHome VDSL2 Modem HG150-UbV3.0, Credentials of Admin are submitted in URL, which can be logged/sniffed...

7.5CVSS7AI score0.01895EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 9:12 p.m.7 views

CVE-2021-27171

An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to start a Linux telnetd as root on port 26/tcp by using the CLI interface commands of ddd and shell or tshell...

10CVSS7.2AI score0.17835EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 9:12 p.m.8 views

CVE-2021-27144

An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded fi!b@er$h%o^mesuperadmin / sfuh+g|u credentials for an ISP...

9.8CVSS7.2AI score0.21943EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 9:10 p.m.10 views

CVE-2021-27150

An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded gestiontelebucaramanga / t3l3buc4r4m4ng42013 credentials for an ISP...

9.8CVSS7.2AI score0.2049EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 9:10 p.m.6 views

CVE-2021-27145

An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / lnadmin credentials for an ISP...

9.8CVSS7.2AI score0.23633EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 9:10 p.m.6 views

CVE-2021-27154

An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / G0R2U1P2ag credentials for an ISP...

9.8CVSS7.2AI score0.2049EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 7:30 p.m.9 views

CVE-2021-27179

An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to crash the telnet daemon by sending a certain 0a 65 6e 61 62 6c 65 0a 02 0a 1a 0a string...

7.5CVSS7AI score0.13929EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 7:30 p.m.13 views

CVE-2021-27162

An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded user / tattoo@home credentials for an ISP...

9.8CVSS7.1AI score0.26847EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 7:30 p.m.4 views

CVE-2021-27172

An issue was discovered on FiberHome HG6245D devices through RP2613. A hardcoded GEPON password for root is defined inside /etc/init.d/system-config.sh...

9.8CVSS7.3AI score0.19844EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 7:30 p.m.8 views

CVE-2021-27153

An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded trueadmin / admintrue credentials for an ISP...

9.8CVSS7.2AI score0.2049EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 7:29 p.m.8 views

CVE-2021-27163

An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / tele1234 credentials for an ISP...

9.8CVSS7.2AI score0.23633EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 6:52 p.m.11 views

CVE-2021-42912

FiberHome ONU GPON AN5506-04-F RP2617 is affected by an OS command injection vulnerability. This vulnerability allows the attacker, once logged in, to send commands to the operating system as the root user via the ping diagnostic tool, bypassing the IP address field, and concatenating OS commands...

9CVSS7.6AI score0.10865EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/22 8:19 a.m.8 views

CVE-2019-17186

/var/WEB-GUI/cgi-bin/telnet.cgi on FiberHome HG2201T 1.00.M5007JS201804 devices allows pre-authentication remote code execution...

9CVSS7.7AI score0.05871EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 6:27 a.m.9 views

CVE-2017-15647

On FiberHome routers, Directory Traversal exists in /cgi-bin/webproc via the getpage parameter in conjunction with a crafted var:page value...

7.5CVSS6.8AI score0.26619EPSS
Exploits2References1
redhatcve
redhatcve
added 2025/05/22 4:43 a.m.7 views

CVE-2019-17187

/var/WEB-GUI/cgi-bin/downloadfile.cgi on FiberHome HG2201T 1.00.M5007JS201804 devices allows pre-authentication Directory Traversal for reading arbitrary files...

7.5CVSS7.2AI score0.10769EPSS
Exploits1References1
vulncheck_kev
vulncheck_kev
added 2025/04/29 12:0 a.m.5 views

VulnCheck KEV: CVE-2021-27162

An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded user / tattoo@home credentials for an ISP...

9.8CVSS5.8AI score0.26847EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/02/26 4:43 a.m.16 views

CVE-2025-1613

A vulnerability was found in FiberHome AN5506-01A ONU GPON RP2511. It has been rated as problematic. This issue affects some unknown processing of the file /goform/URLfilterCfg of the component URL Filtering Submenu. The manipulation of the argument urlIP leads to cross site scripting. The attack...

4.8CVSS3.3AI score0.00713EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/26 4:42 a.m.10 views

CVE-2025-1616

A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU GPON RP2511. Affected by this issue is some unknown functionality of the component Diagnosis. The manipulation of the argument Destination Address leads to os command injection. The attack may be launche...

9.8CVSS5.2AI score0.08744EPSS
Exploits0References1
osv
osv
added 2025/02/24 4:15 a.m.6 views

CVE-2025-1616

A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU GPON RP2511. Affected by this issue is some unknown functionality of the component Diagnosis. The manipulation of the argument Destination Address leads to os command injection. The attack may be launche...

9.8CVSS5.5AI score0.08744EPSS
Exploits0References3
nvd
nvd
added 2025/02/24 4:15 a.m.17 views

CVE-2025-1616

A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU GPON RP2511. Affected by this issue is some unknown functionality of the component Diagnosis. The manipulation of the argument Destination Address leads to os command injection. The attack may be launche...

9.8CVSS0.08744EPSS
Exploits0References3
Rows per page
Query Builder