Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:25 a.m.8 views

CVE-2024-31970

AdTran SRG 834-5 HDC17600021F1 devices with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1 have SSH enabled by default, accessible both over the LAN and the Internet. During a window of time when the device is being set up, it uses a default username and password combination of admin/admin with...

8.8CVSS8AI score0.00608EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/08/02 12:0 a.m.7 views

The vulnerability of the Ping and Traceroute utilities in the SmartOS Wi-Fi router AdTran SRG 834-5 allows a hacker to execute arbitrary operating system commands.

The vulnerability of the Ping and Traceroute utilities in the SmartOS Wi-Fi router AdTran SRG 834-5 is related to the lack of measures taken to neutralize the special elements used in commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands on the operating...

8CVSS6AI score0.01684EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2024/07/24 4:15 p.m.35 views

CVE-2024-31970

AdTran SRG 834-5 HDC17600021F1 devices with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1 have SSH enabled by default, accessible both over the LAN and the Internet. During a window of time when the device is being set up, it uses a default username and password combination of admin/admin with...

8.8CVSS0.00608EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/07/24 12:0 a.m.8 views

AdTran SRG 834-5 HDC17600021F1 操作系统命令注入漏洞

The AdTran SRG 834-5 HDC17600021F1 is a Gigabit Ethernet gateway from Adtran USA. An operating system command injection vulnerability exists in AdTran SRG 834-5 HDC17600021F1 SmartOS version 11.1.1.1, which can be exploited to execute arbitrary operating system commands with root privileges by...

7.5CVSS8.2AI score0.00534EPSS
Exploits0References4
CVE
CVE
added 2024/07/24 12:0 a.m.76 views

CVE-2024-31970

The CVE-2024-31970 entry concerns AdTran SRG 834-5 HDC17600021F1 devices running SmartOS prior to 12.1.3.1. The root cause is hardcoded SSH credentials (admin/admin) used during a setup window, granting root-level privileges and enabling an attacker to modify the admin account or create a new one...

8.8CVSS9.8AI score0.00608EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/07/24 12:0 a.m.45 views

CVE-2024-31970

AdTran SRG 834-5 HDC17600021F1 devices with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1 have SSH enabled by default, accessible both over the LAN and the Internet. During a window of time when the device is being set up, it uses a default username and password combination of admin/admin with...

0.00608EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/04/08 12:0 a.m.5 views

PT-2024-5340 · Adtran · Adtran Srg 834-5

Name of the Vulnerable Software and Affected Versions: AdTran SRG 834-5 devices with SmartOS versions prior to 12.1.3.1 Description: The issue is related to the use of hardcoded credentials in the SSH service of the affected devices. This allows a remote attacker to execute arbitrary operating...

9CVSS10AI score0.00608EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2016/11/02 12:0 a.m.1651 views

SSH Brute Force Logins With Default Credentials Reporting

It was possible to login into the remote SSH server using default credentials. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.6AI score0.90049EPSS
Exploits68References2
Rows per page
Query Builder