26 matches found
CVE-2024-42658
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the cookie's parameter...
CVE-2024-42657
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the lack of encryption during login process...
CVE-2024-37855
An issue in Nepstech Wifi Router xpon terminal NTPL-Xpon1GFEVN, hardware verstion 1.0 firmware 2.0.1 allows a remote attacker to execute arbitrary code via the router's Telnet port 2345 without requiring authentication credentials...
CVE-2024-40119
Nepstech Wifi Router xpon terminal model NTPL-Xpon1GFEVN v.1.0 Firmware V2.0.1 contains a Cross-Site Request Forgery CSRF vulnerability in the password change function, which allows remote attackers to change the admin password without the user's consent, leading to a potential account takeover...
CVE-2024-42658
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the cookie's parameter...
CVE-2024-42658
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the cookie's parameter...
CVE-2024-42657
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the lack of encryption during login process...
CVE-2024-42657
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the lack of encryption during login process...
CVE-2024-42657
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the lack of encryption during login process...
Nepstech NTPL-XPON1GFEVN 安全漏洞
The Nepstech NTPL-XPON1GFEVN is a wireless router from Nepstech. A security vulnerability exists in Nepstech NTPL-XPON1GFEVN v1.0. An attacker can exploit the vulnerability to obtain sensitive information via the parameters of a cookie...
CVE-2024-42657
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the lack of encryption during login process...
Nepstech NTPL-XPON1GFEVN 安全漏洞
The Nepstech NTPL-XPON1GFEVN is a wireless router from Nepstech. A security vulnerability exists in Nepstech NTPL-XPON1GFEVN v1.0. An attacker can exploit the vulnerability to gain access to sensitive information...
CVE-2024-42658
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the cookie's parameter...
CVE-2024-42658
An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the cookie's parameter...
CVE-2024-42658
CVE-2024-42658 affects wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0. The Red Hat/NVD entries and vendor references describe an information disclosure where a remote attacker can obtain sensitive data via the cookie parameter. The exact root cause details are not provided beyond the cookie pa...
CVE-2024-40119
Nepstech Wifi Router xpon terminal model NTPL-Xpon1GFEVN v.1.0 Firmware V2.0.1 contains a Cross-Site Request Forgery CSRF vulnerability in the password change function, which allows remote attackers to change the admin password without the user's consent, leading to a potential account takeover...
CVE-2024-40119
Nepstech Wifi Router xpon terminal model NTPL-Xpon1GFEVN v.1.0 Firmware V2.0.1 contains a Cross-Site Request Forgery CSRF vulnerability in the password change function, which allows remote attackers to change the admin password without the user's consent, leading to a potential account takeover...
CVE-2024-40119
Nepstech Wifi Router xpon terminal model NTPL-Xpon1GFEVN v.1.0 Firmware V2.0.1 contains a Cross-Site Request Forgery CSRF vulnerability in the password change function, which allows remote attackers to change the admin password without the user's consent, leading to a potential account takeover...
CVE-2024-40119
CVE-2024-40119 affects Nepstech Wifi Router xpon (terminal), model NTPL-Xpon1GFEVN v1.0 with Firmware V2.0.1. The vulnerability is a CSRF flaw in the password change function that allows remote attackers to change the admin password without user consent, potentially leading to an account takeover...
PT-2024-28788 · Nepstech · Nepstech Wifi Router Xpon
Name of the Vulnerable Software and Affected Versions: Nepstech Wifi Router xpon terminal model NTPL-Xpon1GFEVN version 1.0 Firmware V2.0.1 Description: The issue concerns a Cross-Site Request Forgery CSRF vulnerability in the password change function. This allows remote attackers to change the...