CVE-2026-30496

The Optoma CinemaX P2 projector firmware TVOS-04.24.010.04.01, Android 8.0.0 exposes an HTTP API on TCP port 2345 that allows full unauthenticated remote control of the device. The API supports both reading configuration 74 endpoints and writing/modifying settings including volume, mute,...

EUVD-2026-28367

The Optoma CinemaX P2 projector firmware TVOS-04.24.010.04.01, Android 8.0.0 exposes an HTTP API on TCP port 2345 that allows full unauthenticated remote control of the device. The API supports both reading configuration 74 endpoints and writing/modifying settings including volume, mute,...

Optoma CinemaX P2 安全漏洞

The Optoma CinemaX P2 is a super-short focal-length 4K laser home projector from Optoma. The Optoma CinemaX P2 has a security vulnerability, which stems from exposing the HTTP API on TCP port 2345 and allowing unauthorized remote control. This vulnerability could allow any device on the same...

CVE-2026-30496

The Optoma CinemaX P2 projector (firmware TVOS-04.24.010.04.01 on Android 8.0.0) exposes an unauthenticated HTTP API on TCP port 2345 that allows full remote control, including reading 74 configuration endpoints and modifying settings (volume, mute, brightness, power, network protocols including ...

CVE-2026-30496

The Optoma CinemaX P2 projector firmware TVOS-04.24.010.04.01, Android 8.0.0 exposes an HTTP API on TCP port 2345 that allows full unauthenticated remote control of the device. The API supports both reading configuration 74 endpoints and writing/modifying settings including volume, mute,...

CVE-2026-30496

The Optoma CinemaX P2 projector firmware TVOS-04.24.010.04.01, Android 8.0.0 exposes an HTTP API on TCP port 2345 that allows full unauthenticated remote control of the device. The API supports both reading configuration 74 endpoints and writing/modifying settings including volume, mute,...

PT-2026-38435

Name of the Vulnerable Software and Affected Versions Optoma CinemaX P2 version TVOS-04.24.010.04.01 Description The device exposes an HTTP API on TCP port 2345 that allows full unauthenticated remote control. This API enables reading configuration across 74 endpoints and modifying settings such ...

CVE-2026-30496

The Optoma CinemaX P2 projector firmware TVOS-04.24.010.04.01, Android 8.0.0 exposes an HTTP API on TCP port 2345 that allows full unauthenticated remote control of the device. The API supports both reading configuration 74 endpoints and writing/modifying settings including volume, mute,...

CVE-2024-37855

An issue in Nepstech Wifi Router xpon terminal NTPL-Xpon1GFEVN, hardware verstion 1.0 firmware 2.0.1 allows a remote attacker to execute arbitrary code via the router's Telnet port 2345 without requiring authentication credentials...

CVE-2024-37855

An issue in Nepstech Wifi Router xpon terminal NTPL-Xpon1GFEVN, hardware verstion 1.0 firmware 2.0.1 allows a remote attacker to execute arbitrary code via the router's Telnet port 2345 without requiring authentication credentials...

PT-2024-27785 · Nepstech · Nepstech Wifi Router Xpon

Name of the Vulnerable Software and Affected Versions: Nepstech Wifi Router xpon terminal NTPL-Xpon1GFEVN, hardware version 1.0, firmware version 2.0.1 Description: The issue allows a remote attacker to execute arbitrary code via the router's Telnet port 2345 without requiring authentication...

Nepstech Router Security Vulnerability

Nepstech Router is a series of routers from Nepstech. A security vulnerability exists in Nepstech Router xpon terminal NTPL-Xpon1GFEVN. An attacker could exploit the vulnerability to execute arbitrary code via the router's Telnet port 2345 without authentication credentials...

CVE-2000-0558

Buffer overflow in HP Openview Network Node Manager 6.1 allows remote attackers to execute arbitrary commands via the Alarm service OVALARMSRV on port 2345...