19 matches found
CVE-2017-20223
Telesquare SKT LTE Router SDT-CS3B1 firmware version 1.2.0 contains an insecure direct object reference vulnerability that allows attackers to bypass authorization and access resources by manipulating user-supplied input parameters. Attackers can directly reference objects in the system to retrie...
CVE-2017-20223
CVE-2017-20223 affects the Telesquare SKT LTE Router SDT-CS3B1, firmware version 1.2.0. The vulnerability is an insecure direct object reference that allows an unauthenticated attacker to bypass authorization by manipulating user-supplied input parameters, enabling access to resources and functio...
CVE-2017-20221 Telesquare SKT LTE Router SDT-CS3B1 CSRF System Command Execution
Telesquare SKT LTE Router SDT-CS3B1 version 1.2.0 contains a cross-site request forgery vulnerability that allows authenticated attackers to execute arbitrary system commands by exploiting missing request validation. Attackers can craft malicious web pages that perform administrative actions when...
EUVD-2018-7234
Malware in sbrugna...
EUVD-2018-7237
Malware in sbrugna...
EUVD-2018-7236
Malware in sbrugna...
EUVD-2018-7238
Malware in sbrugna...
PT-2024-13740 · Shenzhen · Shenzhen Jf6000 Cloud Media Collaboration Processing Platform
Name of the Vulnerable Software and Affected Versions: Shenzhen JF6000 Cloud Media Collaboration Processing Platform firmware version V1.2.0 Shenzhen JF6000 Cloud Media Collaboration Processing Platform software version V2.0.0 build 6245 Description: The issue is related to Incorrect Access...
Eltex ESP-200 Authentication Bypass Vulnerability
Eltex ESP-200 is a wireless router product. A security vulnerability exists in the Eltex ESP-200 using firmware version 1.2.0. A remote attacker can exploit the vulnerability to log in unauthenticated with the help of default credentials...
Default configuration
An authenticated attacker with low privileges can use insecure sudo configuration to expand attack surface in Eltex ESP-200 firmware version 1.2.0...
Default credentials
An attacker without authentication can login with default credentials for privileged users in Eltex ESP-200 firmware version 1.2.0...
CVE-2018-15357
An authenticated attacker with low privileges can extract password hash information for all users in Eltex ESP-200 firmware version 1.2.0...
CVE-2018-15356
An authenticated attacker can execute arbitrary code using command ejection in Eltex ESP-200 firmware version 1.2.0...
CVE-2018-15357
An authenticated attacker with low privileges can extract password hash information for all users in Eltex ESP-200 firmware version 1.2.0...
CVE-2018-15356
An authenticated attacker can execute arbitrary code using command ejection in Eltex ESP-200 firmware version 1.2.0...
CVE-2018-15357
An authenticated attacker with low privileges can extract password hash information for all users in Eltex ESP-200 firmware version 1.2.0...
PT-2018-12991 · Eltex · Eltex Esp-200 +1
Name of the Vulnerable Software and Affected Versions: Eltex ESP-200 firmware version 1.2.0 Description: An authenticated attacker with low privileges can extract password hash information for all users. Recommendations: For Eltex ESP-200 firmware version 1.2.0, update to a newer version that...
PT-2018-12992 · Eltex · Eltex Esp-200 +1
Name of the Vulnerable Software and Affected Versions: Eltex ESP-200 firmware version 1.2.0 Description: The issue allows an authenticated attacker with low privileges to activate a high-privileged user, potentially expanding the attack surface. Recommendations: For Eltex ESP-200 firmware version...
Improper Access Control Vulnerability in Toshiba Home gateway HEM-GW16A Firmware
TOSHIBA Home Gateway HEM-GW26A and TOSHIBA Home Gateway HEM-GW16A are both home gateway products from Toshiba Japan. An access control error vulnerability exists in the TOSHIBA Home Gateway HEM-GW26A using firmware version HEM-GW26A-FW-V1.2.0 and earlier and the TOSHIBA Home Gateway HEM-GW16A usi...