Security feature bypass

A security misconfiguration vulnerability exists in the Zyxel LTE3316-M604 firmware version V2.00ABMP.6C0 due to a factory default misconfiguration intended for testing purposes. A remote attacker could leverage this vulnerability to access an affected device using Telnet...

PT-2023-1915 · Zyxel · Zyxel Lte3316-M604 +1

Name of the Vulnerable Software and Affected Versions: Zyxel LTE3316-M604 version V2.00ABMP.6C0 Zyxel LTE3202-M437 affected versions not specified Description: A security misconfiguration vulnerability exists due to a factory default misconfiguration intended for testing purposes. This allows a...

Zyxel LTE3316-M604 安全漏洞

The Zyxel LTE3316-M604 is a wireless router from Zyxel. A security vulnerability exists in Zyxel LTE3316-M604 firmware version V2.00ABMP.6C0, which is caused due to a security misconfiguration, and can be exploited by remote attackers to gain access to the affected device using Telnet...

The vulnerability of the microprogramming software of Mitsubishi MELFA series SD/SQ and F industrial robots lies in the insufficient protection of operational data during code debugging. This allows attackers to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the microprogrammed software in Mitsubishi MELFA industrial robots of the SD/SQ and F series is related to insufficient protection of operational data during code debugging. Exploiting this vulnerability allows an attacker to bypass security restrictions and gain unauthorized...

PT-2023-2478 · Aten · Aten Pe8108

Name of the Vulnerable Software and Affected Versions: Aten PE8108 version 2.4.232 Description: The issue is related to insufficient protection of registration data in the web interface of the Aten PE8108 power distribution unit PDU software. This allows for unauthenticated access to Telnet and...

TOTOLINK N200RE 信任管理问题漏洞

The TOTOLINK N200RE is a router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK N200RE N200REv5 firmware version V9.3.5u.6139, which originates from a vulnerability that allows an attacker to access the telnet service via a crafted POST request, which can b...

CVE-2023-22316

Hidden functionality vulnerability in PIX-RT100 versions RT100TEQ2.1.1EQ101 and RT100TEQ2.1.2EQ101 allows a network-adjacent attacker to access the product via undocumented Telnet or SSH services...

CVE-2022-44932

An access control issue in Tenda A18 v15.13.07.09 allows unauthenticated attackers to access the Telnet service...

Tenda A18 安全漏洞

The Tenda A18 is an AC1200 dual-band Wi-Fi repeater from Tenda China. A security vulnerability exists in Tenda A18 version v15.13.07.09, which originates from allowing an unauthorized attacker to access the Telnet service...

PT-2022-21056 · Oring · Oring Net Iap-420

Name of the Vulnerable Software and Affected Versions: ORing net IAP-420+ version 2.0m Description: The issue allows unauthorized access to the device via telnet, using hardcoded credentials, which provides an administrative shell. These credentials reset to defaults with every reboot, allowing...

PT-2022-23237 · Contec · Contec Fxa3200

Name of the Vulnerable Software and Affected Versions: Contec FXA3200 versions 1.13 and under Description: The issue concerns a hard-coded hash password for the root user stored in the /etc/shadow component. This password is weak and can be cracked in a few minutes. Once the password is obtained,...

Allied Telesis CentreCOM AR260S 安全漏洞

The Allied Telesis CentreCOM AR260S is a basic VPN access router from Allied Telesis Japan. A security vulnerability exists in the Allied Telesis CentreCOM AR260S V2 firmware prior to version 3.3.7, which originates from undocumented hidden commands that can be executed by an attacker from the...

PT-2022-4623 · Centrecom · Centrecom Ar260S V2

Name of the Vulnerable Software and Affected Versions: CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 Description: The issue is related to an undocumented hidden command that can be executed from the telnet function, allowing a remote authenticated attacker to execute an arbitrary OS...

CVE-2022-31211

An issue was discovered in Infiray IRAY-A8Z3 1.0.957. There is a blank root password for TELNET by default...

CVE-2021-42892

In TOTOLINK EX1200T V4.1.2cu.5215, an attacker can start telnet without authorization because the default username and password exists in the firmware...

CVE-2021-42892

In TOTOLINK EX1200T V4.1.2cu.5215, an attacker can start telnet without authorization because the default username and password exists in the firmware...

TOTOLINK EX1200T 信任管理问题漏洞

TOTOLINK EX1200T is a Wi-Fi range extender from China-based Gion Electronics TOTOLINK.TOTOLINK EX1200T is vulnerable to a trust management issue, which stems from the presence of a default username and password in the firmware, and can be exploited by an attacker to launch telnet without...

CVE-2020-22253

Xiongmai Technology Co devices AHB7008T-MH-V2, AHB7804R-ELS, AHB7804R-MH-V2, AHB7808R-MS-V2, AHB7808R-MS, AHB7808T-MS-V2, AHB7804R-LMS, and HI3518E50H10LS39 were all discovered to have port 9530 open which allows unauthenticated attackers to make arbitrary Telnet connections with the victim devic...

多款 Xiongmai 产品安全漏洞

The Xiongmai AHB7008T-MH-V2, among others, is a hard disk recorder DVR from Xiongmai Technology Xiongmai, a Chinese company. A security vulnerability exists in multiple Xiongmai products that originates from an open port 9530. An unauthenticated attacker can make an arbitrary Telnet connection to...

CVE-2021-46008

In totolink a3100r V5.9c.4577, the hard-coded telnet password can be discovered from official released firmware. An attacker, who has connected to the Wi-Fi, can easily telnet into the target with root shell if the telnet is function turned on...