CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

277 matches found

NVD•added 2018/07/13 8:29 p.m.•11 views

CVE-2016-9494

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation. The device's advanced status web page that is linked to from the basic status web page does not appear to properly parse malformed GET requests. This may...

6.5CVSS6.5AI score0.00202EPSS

Exploits0References2

OSV•added 2018/07/13 8:29 p.m.•3 views

CVE-2016-9495

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, uses hard coded credentials. Access to the device's default telnet port 23 can be obtained through using one of a few default credentials shared among all devices...

8.8CVSS5.8AI score

Exploits0References2

OSV•added 2018/07/13 8:29 p.m.•2 views

CVE-2016-9497

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, is vulnerable to an authentication bypass using an alternate path or channel. By default, port 1953 is accessible via telnet and does not require authentication. An unauthenticated remote user can access many...

8.8CVSS5.8AI score

Exploits0References2

NVD•added 2018/07/13 8:29 p.m.•9 views

CVE-2016-9497

8.8CVSS9.1AI score0.00517EPSS

Exploits0References2

OSV•added 2018/07/13 8:29 p.m.•3 views

CVE-2016-9494

6.5CVSS5.8AI score0.00202EPSS

Exploits0References2

NVD•added 2018/07/13 8:29 p.m.•5 views

CVE-2016-9496

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, lacks authentication. An unauthenticated user may send an HTTP GET request to http://ip/com/gatewayreset or http://ip/cgi/reboot.bin to cause the modem to reboot...

6.5CVSS6.5AI score0.01814EPSS

Exploits0References2

Prion•added 2018/07/13 8:29 p.m.•14 views

Input validation

3.3CVSS7AI score0.00202EPSS

Exploits0References2Affected Software4

Prion•added 2018/07/13 8:29 p.m.•12 views

Design/Logic Flaw

6.1CVSS7.1AI score0.01814EPSS

Exploits0References2Affected Software4

Prion•added 2018/07/13 8:29 p.m.•13 views

Authentication flaw

8.3CVSS7.8AI score0.00517EPSS

Exploits0References2Affected Software4

Prion•added 2018/07/13 8:29 p.m.•13 views

Hardcoded credentials

5.8CVSS7AI score0.00121EPSS

Exploits0References2Affected Software4

Cvelist•added 2018/07/13 8:0 p.m.•14 views

CVE-2016-9494 Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation, potentially leading to denial of service

7.4AI score0.00202EPSS

Exploits0References2

Cvelist•added 2018/07/13 8:0 p.m.•20 views

CVE-2016-9495 Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, uses hard coded credentials

8.7AI score0.00121EPSS

Exploits0References2

CVE•added 2018/07/13 8:0 p.m.•40 views

CVE-2016-9494

Concrete details found: CVE-2016-9494 affects Hughes high‑performance broadband satellite modems (models HN7740S, DW7000, HN7000S/SM). Root cause is improper input validation on the advanced status web page parsing malformed GET requests, potentially allowing a denial of service. OpenVAS and NVD ...

6.5CVSS6.4AI score0.00202EPSS

Exploits0References2Affected Software1

CVE•added 2018/07/13 8:0 p.m.•54 views

CVE-2016-9495

CVE-2016-9495 affects Hughes broadband satellite modems (HN7740S, DW7000, HN7000S/SM). The root issue is use of hard-coded/default credentials allowing access to port 23 via telnet; OpenVAS notes multiple vulnerabilities in these devices. Affected firmware before 6.9.0.34 is vulnerable; 6.9.0.34+...

8.8CVSS8.7AI score0.00121EPSS

Exploits0References2Affected Software1

CVE•added 2018/07/13 8:0 p.m.•45 views

CVE-2016-9496

Hughes broadband satellite modems (models HN7740S, DW7000, HN7000S/SM) are affected by CVE-2016-9496 due to missing authentication for certain HTTP endpoints. An unauthenticated user can trigger a reboot by requesting http://[ip]/com/gatewayreset or http://[ip]/cgi/reboot.bin, potentially facilit...

6.5CVSS6.5AI score0.01814EPSS

Exploits0References2Affected Software1

Cvelist•added 2018/07/13 8:0 p.m.•14 views

CVE-2016-9497 Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, is vulnerable to an authentication bypass using an alternate path or channel

9.2AI score0.00517EPSS

Exploits0References2

ATTACKERKB•added 2017/12/11 9:29 p.m.•1 views

CVE-2014-8358

Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D02SP07C1014 23.015.02.07.1014 and before V200R003B015D02SP08C1014 23.015.02.08.1014 use a weak ACL for the "Mobile Partner" directory, which allows remote attackers to gain SYSTEM privileges by compromising a...

9.3CVSS5.6AI score0.00784EPSS

Exploits1References4

CNVD•added 2017/12/11 12:0 a.m.•1 views

Vivo modems information disclosure vulnerability

Vivo modems is an exploit kit for modems. A security vulnerability exists in Vivo modems. A remote attacker can exploit the vulnerability by reading the index.cgi?page=wifi HTML source code to obtain sensitive information...

7.5CVSS7AI score0.00315EPSS

Exploits0References1

Prion•added 2017/12/08 5:29 a.m.•10 views

Code injection

Vivo modems allow remote attackers to obtain sensitive information by reading the index.cgi?page=wifi HTML source code, as demonstrated by ssid and pskwepkey fields...

5CVSS7.3AI score0.00315EPSS

Exploits0References1

NVD•added 2017/12/08 5:29 a.m.•7 views

CVE-2017-17463

Vivo modems allow remote attackers to obtain sensitive information by reading the index.cgi?page=wifi HTML source code, as demonstrated by ssid and pskwepkey fields...

7.5CVSS7.3AI score0.00315EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by