CVE-2024-31971

Multiple stored cross-site scripting XSS vulnerabilities on AdTran NetVanta 3120 18.01.01.00.E devices allow remote attackers to inject arbitrary JavaScript, as demonstrated by /mainPassword.html, /processIdentity.html, /public.html, /dhcp.html, /private.html, /hostname.html, /connectivity.html,...

Adtran NetVanta 3120 跨站脚本漏洞

The Adtran NetVanta 3120 is a fixed-port Ethernet router from Adtran USA. A cross-site scripting vulnerability exists in the Adtran NetVanta 3120 version 18.01.01.00.E. The vulnerability stems from the presence of multiple stored cross-site scripting vulnerabilities, which allows remote attackers...

PT-2024-24325 · Adtran · Adtran Netvanta 3120

Name of the Vulnerable Software and Affected Versions: AdTran NetVanta 3120 version 18.01.01.00.E Description: The issue allows remote attackers to inject arbitrary JavaScript code, exploiting multiple stored cross-site scripting XSS vulnerabilities. This is demonstrated by various API endpoints,...

CVE-2024-31971

Multiple stored cross-site scripting XSS vulnerabilities on AdTran NetVanta 3120 18.01.01.00.E devices allow remote attackers to inject arbitrary JavaScript, as demonstrated by /mainPassword.html, /processIdentity.html, /public.html, /dhcp.html, /private.html, /hostname.html, /connectivity.html,...

CVE-2024-31971

CVE-2024-31971 affects AdTran NetVanta 3120 devices running version 18.01.01.00.E, with multiple stored XSS vulnerabilities that allow remote injection of JavaScript via endpoints such as /mainPassword.html, /processIdentity.html, /public.html, /dhcp.html, /private.html, /hostname.html, /connecti...

CVE-2024-31971

Multiple stored cross-site scripting XSS vulnerabilities on AdTran NetVanta 3120 18.01.01.00.E devices allow remote attackers to inject arbitrary JavaScript, as demonstrated by /mainPassword.html, /processIdentity.html, /public.html, /dhcp.html, /private.html, /hostname.html, /connectivity.html,...

The vulnerability of the Telnet service of the microprogramming-based router AdTran NetVanta 3120 allows a intruder to gain unauthorized access to the device.

The vulnerability of the Telnet service provided by the microprogramming-based router software AdTran NetVanta 3120 is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to the device...

CVE-2024-28093

The TELNET service of AdTran NetVanta 3120 18.01.01.00.E devices is enabled by default, and has default credentials for a root-level account...

CVE-2024-28093

The TELNET service of AdTran NetVanta 3120 18.01.01.00.E devices is enabled by default, and has default credentials for a root-level account...

CVE-2024-28093

The TELNET service of AdTran NetVanta 3120 18.01.01.00.E devices is enabled by default, and has default credentials for a root-level account...

Adtran NetVanta 3120 安全漏洞

The Adtran NetVanta 3120 is a fixed-port Ethernet router from Adtran USA. A security vulnerability exists in the Adtran NetVanta 3120 version 18.01.01.00.E. The vulnerability stems from the device's TELNET service being enabled by default and having default credentials for a root-level account...

CVE-2024-28093

CVE-2024-28093 affects AdTran NetVanta 3120 devices running version 18.01.01.00.E, where TELNET is enabled by default and uses a root-level credential. The issue is tied to default/root access and could allow unauthorized device access. Mitigation: disable TELNET or restrict access, and apply pat...