CVE-2024-11068

The D-Link DSL6740C modem has an Incorrect Use of Privileged APIs vulnerability, allowing unauthenticated remote attackers to modify any user’s password by leveraging the API, thereby granting access to Web, SSH, and Telnet services using that user’s account...

PT-2024-8176 · D Link · D-Link Dsl6740C

Name of the Vulnerable Software and Affected Versions: D-Link DSL6740C modem affected versions not specified Description: The D-Link DSL6740C modem has an OS Command Injection issue, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a...

The vulnerability of the file /squashfs-root/web_cste/cgi-bin/product.ini of the TOTOLink T10 router microprogramming software allows a intruder to gain unauthorized access to the Telnet service.

The vulnerability of the file /squashfs-root/webcste/cgi-bin/product.ini of the TOTOLink T10 microprogramming router software is related to the use of pre-installed credentials. Exploiting this vulnerability could allow an attacker to gain unauthorized access to the Telnet service...

PT-2024-27005 · Swissphone · Swissphone Dical-Red 4009

Name of the Vulnerable Software and Affected Versions: Swissphone DiCal-RED 4009 devices affected versions not specified Description: The issue allows a remote attacker to gain a root shell via TELNET without authentication. Recommendations: At the moment, there is no information about a newer...

CVE-2024-31070

Initialization of a resource with an insecure default vulnerability in FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. allows a remote unauthenticated attacker to access telnet service unlimitedly...

CVE-2024-31070

CVE-2024-31070 affects Century Systems’ FutureNet NXR/VXR/WXR series. The vulnerability is an insecure default initialization that allows a remote unauthenticated attacker to access the Telnet service without limits. Affected devices expose Telnet due to default configuration and insecure resourc...

CVE-2024-6422 Pepperl+Fuchs: OIT Products can be manipulated via unintended Telnet access

An unauthenticated remote attacker can manipulate the device via Telnet, stop processes, read, delete and change data...

CVE-2024-6422 Pepperl+Fuchs: OIT Products can be manipulated via unintended Telnet access

An unauthenticated remote attacker can manipulate the device via Telnet, stop processes, read, delete and change data...

Pepperl+Fuchs Multiple Products Access Control Error Vulnerability

Pepperl+Fuchs OIT Series is a series of high temperature identification systems from Pepperl+Fuchs, Germany. An access control error vulnerability exists in various Pepperl+Fuchs products, which can be exploited by an unauthenticated, remote attacker to manipulate the device, stop processes, read...

CVE-2024-28751

An high privileged remote attacker can enable telnet access that accepts hardcoded credentials...

CVE-2024-28751 ifm: Hardcoded telnet credentials in Smart PLC

An high privileged remote attacker can enable telnet access that accepts hardcoded credentials...

CVE-2024-28751 ifm: Hardcoded telnet credentials in Smart PLC

An high privileged remote attacker can enable telnet access that accepts hardcoded credentials...

CVE-2024-28751

CVE-2024-28751 affects ifm electronic Smart PLC AC14xx and AC4xxS (versions 4.3.17 and earlier per CNVD/CVE records). The issue is a trust management vulnerability enabling a remote, high-privilege attacker to enable telnet access with hardcoded credentials. Impact described as remote, unauthenti...

PT-2024-22560 · Ifm · Smart Plc Ac14Xx Firmware +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A high privileged remote attacker can enable telnet access that accepts hardcoded credentials. Recommendations: At the moment, there is no information...

CVE-2023-43845

Aten PE6208 2.3.228 and 2.4.232 have default credentials for the privileged telnet account. The user is not asked to change the credentials after first login. If not changed, attackers can log in to the telnet console and gain administrator privileges...

CVE-2023-43845

Aten PE6208 2.3.228 and 2.4.232 have default credentials for the privileged telnet account. The user is not asked to change the credentials after first login. If not changed, attackers can log in to the telnet console and gain administrator privileges...

ATEN International PE6208 安全漏洞

The ATEN International PE6208 is a power distribution unit from China-based ATEN Automation Technology ATEN International. A security vulnerability exists in the ATEN International PE6208 version 2.3.228, version 2.4.232. An attacker can exploit this vulnerability to log in to the telnet console...

CVE-2024-35396

TOTOLINK CP900L v4.1.5cu.798B20221228 was discovered to contain a hardcoded password for telnet in /webcste/cgi-bin/product.ini, which allows attackers to log in as root...

CVE-2024-35396

TOTOLINK CP900L v4.1.5cu.798B20221228 was discovered to contain a hardcoded password for telnet in /webcste/cgi-bin/product.ini, which allows attackers to log in as root...

PT-2024-3807 · Totolink · Totolink Cp900L

Name of the Vulnerable Software and Affected Versions: TOTOLINK CP900L version 4.1.5cu.798 B20221228 Description: The issue is related to a hardcoded password for telnet in the /web cste/cgi-bin/product.ini file, allowing attackers to log in as root. This is due to the use of predefined credentia...