"Cablehaunt" Cable Modem WebSocket DoS

There exists a buffer overflow vulnerability in certain Cable Modem Spectrum Analyzer interfaces. This overflow is exploitable, but since an exploit would differ between every make, model, and firmware version which also differs from ISP to ISP, this module simply causes a Denial of Service to te...

Code injection

The web interface on the Technicolor TC7230 STEB 01.25 is vulnerable to DNS rebinding, which allows a remote attacker to configure the cable modem via JavaScript in a victim's browser. The attacker can then configure the cable modem to port forward the modem's internal TELNET server, allowing...

CVE-2019-19495

The web interface on the Technicolor TC7230 STEB 01.25 is vulnerable to DNS rebinding, which allows a remote attacker to configure the cable modem via JavaScript in a victim's browser. The attacker can then configure the cable modem to port forward the modem's internal TELNET server, allowing...

CVE-2019-19495

The CVE-2019-19495 entry concerns the Technicolor TC7230 STEB 01.25 web interface. It describes a DNS rebinding vulnerability that allows a remote attacker, via JavaScript in a victim’s browser, to reconfigure the cable modem and enable port-forwarding of the internal TELNET server, potentially g...

Realtek Chip ADSL Cat/Optical Cat Serial Port Command Execution Vulnerability in Realtek Semiconductor Co.

Realtek Corporation Realtek is a supplier of audio and networking chips. Realtek Semiconductor Corporation Realtek chip ADSL cat/optical cat serial port there is a command execution vulnerability, an attacker can use the vulnerability through the modem's arbitrary IPv4 address to access the...

NETCORE Netis DL4323 Cross-Site Scripting Vulnerability

NETCORE Netis DL4323 is a multi-function modem from China's NETCORE. A cross-site scripting vulnerability exists in the NETCORE Netis DL4323, which stems from the lack of proper validation of client data by the WEB application, and can be exploited by an attacker to execute client code...

NETCORE Netis DL4323 Cross-Site Scripting Vulnerability (CNVD-2020-01649)

NETCORE Netis DL4323 is a multi-function modem from China's NETCORE. A cross-site scripting vulnerability exists in the NETCORE Netis DL4323, which stems from the lack of proper validation of client data by the WEB application, and can be exploited by an attacker to execute client code...

CVE-2019-15652

The web interface for NSSLGlobal SatLink VSAT Modem Unit VMU devices before 18.1.0 doesn't properly sanitize input for error messages, leading to the ability to inject client-side code...

Code injection

The web interface for NSSLGlobal SatLink VSAT Modem Unit VMU devices before 18.1.0 doesn't properly sanitize input for error messages, leading to the ability to inject client-side code...

CVE-2019-15652

The CVE-2019-15652 entry concerns the web interface of NSSLGlobal SatLink VSAT Modem Unit (VMU). A vulnerability in the VMU web UI prior to version 18.1.0 arises from inadequate sanitization of input in error messages, enabling injection of client-side code (XSS) via crafted input. Documents cons...

CVE-2019-15652

The web interface for NSSLGlobal SatLink VSAT Modem Unit VMU devices before 18.1.0 doesn't properly sanitize input for error messages, leading to the ability to inject client-side code...

CVE-2019-2289

CVE-2019-2289 involves a lack of integrity check that allows a MODEM to accept arbitrary NAS messages, potentially causing authentication bypass of NAS on Snapdragon-based devices (e.g., Snapdragon Auto, Compute, IoT variants across APQ and MSM families). The description lists an extensive set of...

GSNDCP Module Buffer Overflow Vulnerability in Multiple Qualcomm Products

Qualcomm MDM9206 and others are products of Qualcomm Incorporated.The MDM9206 is a central processing unit CPU product.The MDM9607 is a central processing unit CPU product.The SDX24 is a modem.The MDM9206 is a central processing unit CPU product.The MDM9607 is a central processing unit CPU...

Compal Broadband CH7465LG modem path traversal vulnerability

The Compal Broadband CH7465LG modem is a modem from Compal Computer Industries Compal of Taiwan, China. A path traversal vulnerability exists in the web interface of the Compal Broadband CH7465LG modem CH7465LG-NCIP-6.12.18.25-2p6-NOSH version, which arises from a failure of a networked system or...

CVE-2019-17224

The web interface of the Compal Broadband CH7465LG modem version CH7465LG-NCIP-6.12.18.25-2p6-NOSH is vulnerable to a /%2f/ path traversal attack, which can be exploited in order to test for the existence of a file pathname outside of the web root directory. If a file exists but is not part of th...

Path traversal

The web interface of the Compal Broadband CH7465LG modem version CH7465LG-NCIP-6.12.18.25-2p6-NOSH is vulnerable to a /%2f/ path traversal attack, which can be exploited in order to test for the existence of a file pathname outside of the web root directory. If a file exists but is not part of th...

CVE-2019-17224

The CVE-2019-17224 entry concerns the web interface of the Compal Broadband CH7465LG modem (version CH7465LG-NCIP-6.12.18.25-2p6-NOSH). A /%2f/ path traversal vulnerability could be exploited to probe for files outside the web root. Behavior observed in the description: if a file exists but is no...

PT-2019-13870 · Mitsubishi · Me-Rtu

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Europe B.V. ME-RTU devices versions 2.02 and earlier INEA ME-RTU devices versions 3.0 and earlier Description: An issue allows an attacker to inject malicious code directly into the application through stored cross-site...

CVE-2019-13025

Compal CH7465LG CH7465LG-NCIP-6.12.18.24-5p8-NOSH devices have Incorrect Access Control because of Improper Input Validation. The attacker can send a maliciously modified POST HTTP request containing shell commands, which will be executed on the device, to an backend API endpoint of the cable mod...

Input validation

Compal CH7465LG CH7465LG-NCIP-6.12.18.24-5p8-NOSH devices have Incorrect Access Control because of Improper Input Validation. The attacker can send a maliciously modified POST HTTP request containing shell commands, which will be executed on the device, to an backend API endpoint of the cable mod...