127 matches found
CVE-2024-26156 ETIC Telecom Remote Access Server (RAS) Cross-site Scripting
All versions of ETIC Telecom Remote Access Server RAS prior to 4.5.0 are vulnerable to reflected cross site scripting XSS attacks in the method parameter. The ETIC RAS web server uses dynamic pages that gets their input from the client side and reflects the input in its response to the client...
CVE-2024-26156 ETIC Telecom Remote Access Server (RAS) Cross-site Scripting
All versions of ETIC Telecom Remote Access Server RAS prior to 4.5.0 are vulnerable to reflected cross site scripting XSS attacks in the method parameter. The ETIC RAS web server uses dynamic pages that gets their input from the client side and reflects the input in its response to the client...
ETIC Telecom Remote Access Server 跨站脚本漏洞
ETIC Telecom Remote Access Server is a remote maintenance solution from the French company ETIC Telecom. It is designed to enable manufacturers to remotely maintain automated equipment. A cross-site scripting vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.5.0, which...
ETIC Telecom Remote Access Server 跨站请求伪造漏洞
ETIC Telecom Remote Access Server is a remote maintenance solution from ETIC Telecom, France. It is designed to enable manufacturers to remotely maintain automated equipment. A cross-site request forgery vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.9.19, which ste...
PT-2025-2390 · Etic Telecom · Etic Telecom Remote Access Server
Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.5.0 Description: The issue concerns reflected cross-site scripting in the appliance site name. The ETIC RAS web server saves the site name and then presents it to the administrators in...
ETIC Telecom Remote Access Server 跨站脚本漏洞
ETIC Telecom Remote Access Server is a remote maintenance solution from the French company ETIC Telecom. It is designed to enable manufacturers to remotely maintain automated equipment. A cross-site scripting vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.5.0, which...
ETIC Telecom Remote Access Server 跨站脚本漏洞
ETIC Telecom Remote Access Server is a remote maintenance solution from the French company ETIC Telecom. It is designed to enable manufacturers to remotely maintain automated equipment. A cross-site scripting vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.5.0, which...
ETIC Telecom Remote Access Server 安全漏洞
ETIC Telecom Remote Access Server is a remote maintenance solution from the French company ETIC Telecom. It is designed to enable manufacturers to maintain automated equipment remotely. A security vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.5.0, which stems from...
PT-2025-2389 · Etic Telecom · Etic Telecom Remote Access Server
Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.9.19 Description: The issue allows an external attacker with no access to the device to force the end user into submitting a "setconf" method request, which can lead to denial of servi...
PT-2025-2391 · Etic Telecom · Etic Telecom Remote Access Server
Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.5.0 Description: The issue exposes clear text credentials in the web portal. An attacker can access the ETIC RAS web portal, view the HTML code, and establish a connection to the ETIC...
PT-2025-2393 · Etic Telecom · Etic Telecom Remote Access Server
Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.5.0 Description: The issue concerns reflected cross site scripting XSS attacks. This occurs in the get view method under the view parameter. The ETIC RAS web server uses dynamic pages...
Secomea GateManager 安全漏洞
Secomea GateManager is a remote access server product from Secomea, Denmark. A security vulnerability exists in versions prior to Secomea GateManager 11.2.624095033, which stems from the presence of a buffer overflow vulnerability...
ETIC Telecom RAS 安全漏洞
ETIC Telecom RAS is a series of telecom remote access servers from the French company ETIC Telecom. A security vulnerability exists in ETIC Telecom RAS version 4.7.0 and prior versions, which stems from disabling Web management portal authentication by default, allowing an attacker with access to...
Secomea GateManager 安全漏洞
Secomea GateManager is a remote access server product from Secomea, Denmark. A security vulnerability exists in Secomea GateManager that stems from a password plaintext storage vulnerability...
The vulnerability of the Layer 2 Tunneling Protocol (L2TP) implementation in Microsoft Windows allows a hacker to execute arbitrary code.
The vulnerability of the Layer 2 Tunneling Protocol L2TP implementation in Microsoft Windows operating systems relates to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted connection request to the...
The vulnerability of the Layer 2 Tunneling Protocol (L2TP) implementation in Microsoft Windows allows a hacker to execute arbitrary code.
The vulnerability of the Layer 2 Tunneling Protocol L2TP implementation in Microsoft Windows operating systems relates to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted connection request to the...
The vulnerability in the implementation of the Secure Socket Tunneling Protocol (SSTP) on Microsoft Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Secure Socket Tunneling Protocol SSTP implementation in Microsoft Windows operating systems is related to synchronization errors when using a common resource. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted...
PT-2023-1024 · Microsoft · Windows Secure Socket Tunneling Protocol +1
Name of the Vulnerable Software and Affected Versions: Windows Secure Socket Tunneling Protocol SSTP affected versions not specified Description: The issue is related to errors in synchronization when using a shared resource in the implementation of the Secure Socket Tunneling Protocol SSTP in...
PT-2023-1045 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the implementation of the Layer 2 Tunneling Protocol L2TP in Microsoft Windows, specifically involving the use of memory after it has been freed. This can be exploit...
CVE-2022-41607
All versions of ETIC Telecom Remote Access Server RAS 4.5.0 and prior’s application programmable interface API is vulnerable to directory traversal through several different methods. This could allow an attacker to read sensitive files from the server, including SSH private keys, passwords,...