100 matches found
PT-2023-18961 · Sick · Sick Fx0-Gpnt00000 Flexisoft Pnet Gatew. +9
Name of the Vulnerable Software and Affected Versions: SICK UE410-EN3 FLEXI ETHERNET GATEW. versions all SICK UE410-EN1 FLEXI ETHERNET GATEW. versions all SICK UE410-EN3S04 FLEXI ETHERNET GATEW. versions all SICK UE410-EN4 FLEXI ETHERNET GATEW. versions all SICK FX0-GENT00000 FLEXISOFT EIP GATEW...
Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways
Several versions of the SICK Flexi Soft Gateways FX0-GENT, FX0-GMOD, FX0-GPNT and SICK Flexi Classic Gateway UE410 provide a Telnet interface for debugging, which is enabled by factory default. No password is set in the default configuration. If the password is not set by the customer, a remote...
SUSE CVE-2006-2276
bgpd in Quagga 0.98 and 0.99 before 20060504 allows local users to cause a denial of service CPU consumption via a certain sh ip bgp command entered in the telnet interface...
CVE-2023-0127
A command injection vulnerability in the firmwareupdate command, in the device's restricted telnet interface, allows an authenticated attacker to execute arbitrary commands as root...
Command injection
A command injection vulnerability in the firmwareupdate command, in the device's restricted telnet interface, allows an authenticated attacker to execute arbitrary commands as root...
CVE-2023-0127
Affected product: D-Link DWL-2600AP (wireless access point). Vulnerability: Command injection in the firmware_update command exposed via the device’s restricted telnet interface. Root cause: improper handling in firmware_update allows an authenticated user to inject and execute arbitrary commands...
CVE-2023-0127
A command injection vulnerability in the firmwareupdate command, in the device's restricted telnet interface, allows an authenticated attacker to execute arbitrary commands as root...
PT-2023-16030 · D Link · Dwl-2600Ap Firmware
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A command injection vulnerability in the firmware update command, located in the device's restricted telnet interface, allows an authenticated attacker ...
CVE-2022-43366
IP-COM EW9 V15.11.0.149732 allows unauthenticated attackers to access sensitive information via the checkLoginUser, ate, telnet, version, setDebugCfg, and boot interfaces...
IP-COM EW9 信息泄露漏洞
The IP-COM EW9 is a wireless router from IP-COM. A security vulnerability exists in the IP-COM EW9 version V15.11.0.149732, which originated from a vulnerability that allows an unauthenticated attacker to access sensitive information via the checkLoginUser, ate, telnet, version, setDebugCfg, and...
CVE-2022-29965
The Emerson DeltaV Distributed Control System DCS controllers and IO cards through 2022-04-29 misuse passwords. Access to privileged operations on the maintenance port TELNET interface 23/TCP on M-series and SIS CSLS/LSNB/LSNG nodes is controlled by means of utility passwords. These passwords are...
Code injection
The Emerson DeltaV Distributed Control System DCS controllers and IO cards through 2022-04-29 misuse passwords. Access to privileged operations on the maintenance port TELNET interface 23/TCP on M-series and SIS CSLS/LSNB/LSNG nodes is controlled by means of utility passwords. These passwords are...
CVE-2022-29965
The Emerson DeltaV Distributed Control System DCS controllers and IO cards through 2022-04-29 misuse passwords. Access to privileged operations on the maintenance port TELNET interface 23/TCP on M-series and SIS CSLS/LSNB/LSNG nodes is controlled by means of utility passwords. These passwords are...
CVE-2022-29965
The CVE-2022-29965 issue affects Emerson DeltaV Distributed Control System (DCS) controllers and IO cards up to 2022-04-29. The maintenance-port passwords (TELNET, 23/TCP) are generated by a deterministic, insecure algorithm using a single low-entropy seed (day/hour/minute timestamp). The seed is...
CVE-2021-23850
A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload...
CVE-2019-20467
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. The device by default has a TELNET interface available which is not advertised or functionally used, but is nevertheless available. Two backdoor accounts root and default exist that can be used on this...
Default credentials
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. The device by default has a TELNET interface available which is not advertised or functionally used, but is nevertheless available. Two backdoor accounts root and default exist that can be used on this...
CVE-2019-20467
An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. The device by default has a TELNET interface available which is not advertised or functionally used, but is nevertheless available. Two backdoor accounts root and default exist that can be used on this...
PT-2021-9032 · Sannce · Sannce Smart Hd Wifi Security Camera
Name of the Vulnerable Software and Affected Versions: Sannce Smart HD Wifi Security Camera affected versions not specified Description: An issue was discovered on Sannce Smart HD Wifi Security Camera devices, where a TELNET interface is available by default, although not advertised or functional...
Default credentials
An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14. By sending a setparams.cgi?telnetd=1&save=1&reboot=1 request to the webserver, it is possible to enable the telnet interface on the device. The telnet interface can then be used to obtain access to the device with root...