173 matches found
CVE-2023-23120
The use of the cyclic redundancy check CRC algorithm for integrity check during firmware update makes TRENDnet TV-IP651WI Network Camera firmware version v1.07.01 and earlier vulnerable to firmware modification attacks. An attacker can conduct a man-in-the-middle MITM attack to modify the new...
CVE-2023-23120
The use of the cyclic redundancy check CRC algorithm for integrity check during firmware update makes TRENDnet TV-IP651WI Network Camera firmware version v1.07.01 and earlier vulnerable to firmware modification attacks. An attacker can conduct a man-in-the-middle MITM attack to modify the new...
CVE-2023-23119
The use of the cyclic redundancy check CRC algorithm for integrity check during firmware update makes Ubiquiti airFiber AF2X Radio firmware version 3.2.2 and earlier vulnerable to firmware modification attacks. An attacker can conduct a man-in-the-middle MITM attack to modify the new firmware ima...
Design/Logic Flaw
The use of the cyclic redundancy check CRC algorithm for integrity check during firmware update makes TRENDnet TV-IP651WI Network Camera firmware version v1.07.01 and earlier vulnerable to firmware modification attacks. An attacker can conduct a man-in-the-middle MITM attack to modify the new...
CVE-2023-23110
An exploitable firmware modification vulnerability was discovered in certain Netgear products. The data integrity of the uploaded firmware image is ensured with a fixed checksum number. Therefore, an attacker can conduct a MITM attack to modify the user-uploaded firmware image and bypass the...
CVE-2023-23110
An exploitable firmware modification vulnerability was discovered in certain Netgear products. The data integrity of the uploaded firmware image is ensured with a fixed checksum number. Therefore, an attacker can conduct a MITM attack to modify the user-uploaded firmware image and bypass the...
CVE-2023-23120
The use of the cyclic redundancy check CRC algorithm for integrity check during firmware update makes TRENDnet TV-IP651WI Network Camera firmware version v1.07.01 and earlier vulnerable to firmware modification attacks. An attacker can conduct a man-in-the-middle MITM attack to modify the new...
CVE-2023-23110
An exploitable firmware modification vulnerability was discovered in certain Netgear products. The data integrity of the uploaded firmware image is ensured with a fixed checksum number. Therefore, an attacker can conduct a MITM attack to modify the user-uploaded firmware image and bypass the...
CVE-2023-23110
CVE-2023-23110 describes a firmware modification vulnerability in Netgear devices where the uploaded firmware image is protected by a fixed checksum. An attacker can perform a MITM modification to bypass checksum verification and alter user-uploaded firmware. Affected products/versions include WN...
NETGEAR D6100 安全漏洞
The NETGEAR D6100 is a wireless modem from NETGEAR. A security vulnerability exists in the NETGEAR D6100, which arises from a fixed checksum number that ensures the data integrity of uploaded firmware images. An attacker could conduct a man-in-the-middle attack to bypass the checksum and validati...
CVE-2023-23110
An exploitable firmware modification vulnerability was discovered in certain Netgear products. The data integrity of the uploaded firmware image is ensured with a fixed checksum number. Therefore, an attacker can conduct a MITM attack to modify the user-uploaded firmware image and bypass the...
CVE-2023-23119
The use of the cyclic redundancy check CRC algorithm for integrity check during firmware update makes Ubiquiti airFiber AF2X Radio firmware version 3.2.2 and earlier vulnerable to firmware modification attacks. An attacker can conduct a man-in-the-middle MITM attack to modify the new firmware ima...
CVE-2023-23120
The use of the cyclic redundancy check CRC algorithm for integrity check during firmware update makes TRENDnet TV-IP651WI Network Camera firmware version v1.07.01 and earlier vulnerable to firmware modification attacks. An attacker can conduct a man-in-the-middle MITM attack to modify the new...
CVE-2023-23120
CVE-2023-23120 affects TRENDnet TV-IP651WI Network Camera firmware versions v1.07.01 and earlier. The root cause is using a CRC-based integrity check during firmware updates, which can be bypassed in a MITM scenario to modify the firmware image. The provided documents state the vulnerability but ...
CVE-2022-2484
The signature check in the Nokia ASIK AirScale system module version 474021A.101 can be bypassed allowing an attacker to run modified firmware. This could result in the execution of a malicious kernel, arbitrary programs, or modified Nokia programs...
CVE-2022-46432
An exploitable firmware modification vulnerability was discovered on TP-Link TL-WR743ND V1. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service DoS...
CVE-2022-46423
An exploitable firmware modification vulnerability was discovered on the Netgear WNR2000v1 router. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or cause a Denial of Service...
CVE-2022-46424
An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or...
CVE-2022-46424
An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or...
Design/Logic Flaw
An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point. An attacker can conduct a MITM Man-in-the-Middle attack to modify the user-uploaded firmware image and bypass the CRC check, allowing attackers to execute arbitrary code or...