Lucene search
K

64 matches found

CNNVD
CNNVD
added 2024/07/29 12:0 a.m.6 views

TOTOLINK A3600R 命令注入漏洞

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from a command injection vulnerability that originates from improper handling of the telnetenabled parameter in the setTelnetCfg function of the /cgi-bin/cstecgi.cgi file. An...

8.8CVSS7.5AI score0.03086EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/07/28 12:0 a.m.3 views

TOTOLINK A3100R 命令注入漏洞

The TOTOLINK A3100R is a wireless router. The TOTOLINK A3100R suffers from a command injection vulnerability that stems from improper handling of the telnetenabled parameter. An attacker can exploit this vulnerability to obtain sensitive information...

8.8CVSS7.4AI score0.03086EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/07/23 12:0 a.m.5 views

PT-2024-5386 · Totolink · Totolink Cp900L

Name of the Vulnerable Software and Affected Versions: TOTOLINK CP900 version 6.3c.566 Description: A critical issue has been found in the Telnet Service component, specifically affecting the setTelnetCfg function. The manipulation of the telnet enabled argument leads to command injection. This...

9.8CVSS7.6AI score0.19907EPSS
Exploits1References8
CNNVD
CNNVD
added 2024/06/17 12:0 a.m.5 views

D-Link E Series Security Vulnerability

D-Link E Series is a series of wireless routers from China-based AUO D-Link. A security vulnerability exists in D-Link E Series. An attacker exploiting this vulnerability could force the device to enable Telnet service by accessing a specific URL and logging in using the obtained administrator...

8.8CVSS6.7AI score0.06307EPSS
Exploits0References4
OSV
OSV
added 2024/04/08 1:15 p.m.4 views

CVE-2024-31805

TOTOLINK EX200 V4.0.3c.7646B20201211 allows attackers to start the Telnet service without authorization via the telnetenabled parameter in the setTelnetCfg function...

6.5CVSS5.8AI score0.00503EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/04/08 12:0 a.m.4 views

PT-2024-2867 · Totolink · Totolink Ex200

Name of the Vulnerable Software and Affected Versions: TOTOLINK EX200 version 4.0.3c.7646 B20201211 Description: The issue is related to a flaw in the authorization procedure of the setTelnetCfg function in the TOTOLINK EX200 router's firmware. This flaw allows a remote attacker to start the Teln...

6.5CVSS7AI score0.00503EPSS
Exploits1References7
CNVD
CNVD
added 2024/01/26 12:0 a.m.12 views

TOTOLINK EX1800T Command Execution Vulnerability (CNVD-2024-13795)

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. The TOTOLINK EX1800T suffers from a command execution vulnerability that stems from the telnetenabled parameter of the setTelnetCfg interface failing to correctly filter constructed command special characters,...

9.8CVSS7.7AI score0.01643EPSS
Exploits1References1
OSV
OSV
added 2023/05/10 6:15 a.m.3 views

CVE-2023-25070

Cleartext transmission of sensitive information exists in SkyBridge MB-A100/110 firmware Ver. 4.2.0 and earlier. If the telnet connection is enabled, a remote unauthenticated attacker may eavesdrop on or alter the administrator's communication to the product...

6.5CVSS5.9AI score0.00507EPSS
Exploits0References6
OSV
OSV
added 2023/05/01 5:15 p.m.2 views

CVE-2023-22922

A buffer overflow vulnerability in the Zyxel NBG-418N v2 firmware versions prior to V1.00AARP.14C0 could allow a remote unauthenticated attacker to cause DoS conditions by sending crafted packets if Telnet is enabled on a vulnerable device...

7.5CVSS7.4AI score0.00933EPSS
Exploits0References1
OSV
OSV
added 2023/04/19 11:15 p.m.4 views

CVE-2023-23451

The Flexi Classic and Flexi Soft Gateways SICK UE410-EN3 FLEXI ETHERNET GATEW. with serial number =2311xxxx all Firmware versions, SICK UE410-EN1 FLEXI ETHERNET GATEW. with serial number =2311xxxx all Firmware versions, SICK UE410-EN3S04 FLEXI ETHERNET GATEW. with serial number =2311xxxx all...

9.8CVSS7.3AI score0.00621EPSS
Exploits0References1
Prion
Prion
added 2023/04/19 11:15 p.m.20 views

Default credentials

The Flexi Classic and Flexi Soft Gateways SICK UE410-EN3 FLEXI ETHERNET GATEW. with serial number =2311xxxx all Firmware versions, SICK UE410-EN1 FLEXI ETHERNET GATEW. with serial number =2311xxxx all Firmware versions, SICK UE410-EN3S04 FLEXI ETHERNET GATEW. with serial number =2311xxxx all...

7.5CVSS9.5AI score0.00621EPSS
Exploits0References1Affected Software4
CVE
CVE
added 2023/04/19 12:0 a.m.67 views

CVE-2023-23451

CVE-2023-23451 affects SICK Flexi Classic and Flexi Soft Gateways (e.g., UE410-EN1/EN3/EN3S04/EN4 and FX0-GENT00000/FX0-GMOD00000/FX0-GPNT00000, including V2 variants) where Telnet is enabled by factory default and no password is set in the default configuration. This creates potential unauthoriz...

9.8CVSS9.4AI score0.00621EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/10/21 12:0 a.m.8 views

ORing Net IAP-420+ 安全漏洞

The ORing Net IAP-420+ is a wireless access point from China Power ORing. A security vulnerability exists in the ORing Net IAP-420+ version 2.0m, which stems from a telnet server that is enabled by default and cannot be permanently disabled, which can be used to connect to the device and obtain a...

9.8CVSS8.3AI score0.00851EPSS
Exploits1References2
OSV
OSV
added 2022/03/30 11:15 p.m.6 views

CVE-2021-46008

In totolink a3100r V5.9c.4577, the hard-coded telnet password can be discovered from official released firmware. An attacker, who has connected to the Wi-Fi, can easily telnet into the target with root shell if the telnet is function turned on...

8.8CVSS7.3AI score0.00896EPSS
Exploits1References3
OSV
OSV
added 2021/11/04 4:15 p.m.3 views

CVE-2021-34795

Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...

9.8CVSS7.6AI score0.01745EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/11/03 4:0 p.m.4 views

CVE-2021-40113

Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...

10CVSS7.6AI score0.04631EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/11/03 4:0 p.m.2 views

CVE-2021-34795

Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...

10CVSS7.4AI score0.01745EPSS
Exploits0References2
OSV
OSV
added 2021/02/09 5:15 p.m.6 views

CVE-2020-15798

A vulnerability has been identified in SIMATIC HMI Comfort Panels incl. SIPLUS variants All versions V16 Update 3a, SIMATIC HMI KTP Mobile Panels All versions V16 Update 3a, SINAMICS GH150 All versions, SINAMICS GL150 with option X30 All versions, SINAMICS GM150 with option X30 All versions,...

9.8CVSS7.2AI score0.05176EPSS
Exploits0References3
OSV
OSV
added 2016/06/24 5:59 p.m.13 views

CVE-2016-4802

Multiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1, when built with SSPI or telnet is enabled, allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 security.dll, 2 secur32.dll, or 3 ws232.dll in the application or current...

7.8CVSS7.8AI score0.00565EPSS
Exploits0References3
exploitpack
exploitpack
added 2015/12/01 12:0 a.m.22 views

Belkin N150 Wireless Router F9K1009 v1 - Multiple Vulnerabilities

Belkin N150 Wireless Router F9K1009 v1 - Multiple Vulnerabilities Full Disclosure: Exploit Title : Belkin N150 Wireless Home Router Multiple Vulnerabilities Exploit Author : Rahul Pratap Singh Date : 30/Nov/2015 Home Page Link : http://www.belkin.com Blog Url : 0x62626262.wordpress.com Linkedin :...

0.5AI score
Exploits0
Rows per page
Query Builder