Lucene search
K

580 matches found

EUVD
EUVD
added 2025/11/13 12:30 a.m.7 views

EUVD-2021-34714

FiberHome AN5506-04-FA firmware versions up to and including RP2631 and HG6245D prior to RP2602 contain a stack-based buffer overflow, as the HTTP service 'webs' fails to enforce maximum lengths for Cookie header values. When a cookie longer than 511 bytes is processed, a stack buffer is overrun,...

9.3CVSS6.5AI score0.01817EPSS
Exploits0References4
NVD
NVD
added 2025/11/12 10:15 p.m.5 views

CVE-2021-4464

FiberHome AN5506-04-FA firmware versions up to and including RP2631 and HG6245D prior to RP2602 contain a stack-based buffer overflow, as the HTTP service 'webs' fails to enforce maximum lengths for Cookie header values. When a cookie longer than 511 bytes is processed, a stack buffer is overrun,...

9.3CVSS0.01817EPSS
Exploits0References3
CVE
CVE
added 2025/11/12 10:9 p.m.14 views

CVE-2021-4464

The CVE-2021-4464 entry affects FiberHome AN5506-04-FA (firmware up to RP2631) and HG6245D (up to RP2602). The issue is a stack-based buffer overflow in the HTTP service (webs) caused by not enforcing cookie header length limits, triggering overflow when a cookie >511 bytes is processed, leadi...

9.3CVSS6.7AI score0.01817EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/12 10:9 p.m.5 views

CVE-2021-4464 FIberHome AN5506-04-FA / HG6245D Routers Remote Stack Overflow

FiberHome AN5506-04-FA firmware versions up to and including RP2631 and HG6245D prior to RP2602 contain a stack-based buffer overflow, as the HTTP service 'webs' fails to enforce maximum lengths for Cookie header values. When a cookie longer than 511 bytes is processed, a stack buffer is overrun,...

9.3CVSS6.7AI score0.01817EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/12 10:9 p.m.8 views

CVE-2021-4464 FIberHome AN5506-04-FA / HG6245D Routers Remote Stack Overflow

FiberHome AN5506-04-FA firmware versions up to and including RP2631 and HG6245D prior to RP2602 contain a stack-based buffer overflow, as the HTTP service 'webs' fails to enforce maximum lengths for Cookie header values. When a cookie longer than 511 bytes is processed, a stack buffer is overrun,...

9.3CVSS0.01817EPSS
Exploits0References3
EUVD
EUVD
added 2025/11/12 6:31 p.m.6 views

EUVD-2025-131925

A vulnerability in FiberHome GPON ONU HG6145F1 RP4423 allows the device's factory default Wi-Fi password WPA/WPA2 pre-shared key to be predicted from the SSID. The device generates default passwords using a deterministic algorithm that derives the router passphrase from the SSID, enabling an...

6.6AI score0.01194EPSS
Exploits3References3
NVD
NVD
added 2025/11/12 4:15 p.m.13 views

CVE-2025-63353

A vulnerability in FiberHome GPON ONU HG6145F1 RP4423 allows the device's factory default Wi-Fi password WPA/WPA2 pre-shared key to be predicted from the SSID. The device generates default passwords using a deterministic algorithm that derives the router passphrase from the SSID, enabling an...

9.8CVSS0.01194EPSS
Exploits3References2
OSV
OSV
added 2025/11/12 4:15 p.m.3 views

CVE-2025-63353

A vulnerability in FiberHome GPON ONU HG6145F1 RP4423 allows the device's factory default Wi-Fi password WPA/WPA2 pre-shared key to be predicted from the SSID. The device generates default passwords using a deterministic algorithm that derives the router passphrase from the SSID, enabling an...

9.8CVSS5.8AI score0.01194EPSS
Exploits3References2
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.4 views

FiberHome AN5506-04-F和FiberHome HG6245D 安全漏洞

FiberHome AN5506-04-F and FiberHome HG6245D are both routers from FiberHome, a Chinese company. A security vulnerability exists in the FiberHome AN5506-04-F and FiberHome HG6245D that stems from a stack buffer overflow issue in the HTTP service, which could lead to a crash or perform flow control...

9.3CVSS7.1AI score0.01817EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.14 views

FiberHome GPON ONU HG6145F1 安全漏洞

The FiberHome GPON ONU HG6145F1 is a router from FiberHome China. A security vulnerability exists in the FiberHome GPON ONU HG6145F1 RP4423, which stems from the device's use of a deterministic algorithm to generate a default WiFi password, which could lead an attacker to predict the password...

9.8CVSS6.7AI score0.01194EPSS
Exploits3References3
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.7 views

PT-2025-46670

Name of the Vulnerable Software and Affected Versions FiberHome GPON ONU HG6145F1 RP4423 Description A flaw exists in FiberHome GPON ONU HG6145F1 RP4423 that allows prediction of the device’s factory default Wi-Fi password WPA/WPA2 pre-shared key from the SSID. The device uses a predictable...

9.8CVSS6.7AI score0.01194EPSS
Exploits3References9
CVE
CVE
added 2025/11/12 12:0 a.m.58 views

CVE-2025-63353

FiberHome GPON ONU HG6145F1 RP4423 is affected. The vulnerability arises from a deterministic algorithm that derives the device’s default WPA/WPA2 pre‑shared key from the SSID, enabling an observer to predict the router password without authentication. Red Hat and other sources corroborate that t...

9.8CVSS6.7AI score0.01194EPSS
Exploits3References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.9 views

PT-2025-46729

Name of the Vulnerable Software and Affected Versions FiberHome AN5506-04-FA firmware versions up to and including RP2631 FiberHome HG6245D versions prior to RP2602 Description The HTTP service 'webs' does not properly limit the size of Cookie header values, resulting in a stack-based buffer...

9.3CVSS7AI score0.01817EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/11/12 12:0 a.m.2 views

CVE-2025-63353

A vulnerability in FiberHome GPON ONU HG6145F1 RP4423 allows the device's factory default Wi-Fi password WPA/WPA2 pre-shared key to be predicted from the SSID. The device generates default passwords using a deterministic algorithm that derives the router passphrase from the SSID, enabling an...

6.7AI score0.01194EPSS
Exploits3References2
Cvelist
Cvelist
added 2025/11/12 12:0 a.m.8 views

CVE-2025-63353

A vulnerability in FiberHome GPON ONU HG6145F1 RP4423 allows the device's factory default Wi-Fi password WPA/WPA2 pre-shared key to be predicted from the SSID. The device generates default passwords using a deterministic algorithm that derives the router passphrase from the SSID, enabling an...

0.01194EPSS
Exploits3References2
The Hacker News
The Hacker News
added 2025/10/13 10:12 a.m.6 views

Researchers Warn RondoDox Botnet is Weaponizing Over 50 Flaws Across 30+ Vendors

Malware campaigns distributing the RondoDox botnet have expanded their targeting focus to exploit more than 50 vulnerabilities across over 30 vendors. The activity, described as akin to an "exploit shotgun" approach, has singled out a wide range of internet-exposed infrastructure, including...

8.8CVSS6.9AI score0.99999EPSS
Exploits7
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-13930

Malware in sbrugna...

9.8CVSS9.4AI score0.23633EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-7618

Malware in sbrugna...

9CVSS8.6AI score0.05871EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-13946

Malware in sbrugna...

7.5CVSS7.6AI score0.13929EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-13906

Malware in sbrugna...

7.5CVSS7.6AI score0.16206EPSS
Exploits1References2
Rows per page
Query Builder