15 matches found
EUVD-2021-18247
Malware in sbrugna...
EUVD-2002-0623
Malware in sbrugna...
PT-2025-34660 · Hitron · Hitron Cgnf-Twn
Name of the Vulnerable Software and Affected Versions: Hitron CGNF-TWN version 3.1.1.43-TWN-pre3 Description: The telnet service in Hitron CGNF-TWN is susceptible to a command injection due to insufficient input validation in the telnet command handling mechanism. An attacker can inject arbitrary...
PT-2025-34555 · Unknown · Fnkvision Y215 Cctv Camera
Name of the Vulnerable Software and Affected Versions: FNKvision Y215 CCTV Camera version 10.194.120.40 Description: A weakness has been identified in the FNKvision Y215 CCTV Camera. This vulnerability affects unknown code within the s1 rf test config file of the Telnet Service component,...
CVE-2025-55584
CVE-2025-55584 affects the TOTOLINK A3002R router (version 4.0.0-B20230531.1404). The issue is insecure credentials for the telnet service and the root account, enabling potential unauthorized remote access via Telnet. Some connected sources also recommend changing default credentials as a mitiga...
PT-2025-33607 · Tenda · Tenda Ac20
Name of the Vulnerable Software and Affected Versions: Tenda AC20 version 16.03.08.12 Description: A vulnerability was identified in the Telnet Service component of Tenda AC20. The websFormDefine function within the /goform/telnet file is affected, leading to command injection. The attack can be...
CVE-2025-8938
A vulnerability was found in TOTOLINK N350R 1.2.3-B20130826. This issue affects the function formSysTel of the file /boafrm/formSysTel of the component Telnet Service. The manipulation of the argument TelEnabled leads to backdoor. The attack may be initiated remotely. The exploit has been disclos...
PT-2025-26652
Name of the Vulnerable Software and Affected Versions: 70mai M300 up to 20250611 Description: A critical issue was found in the Telnet Service component, allowing the use of default credentials. The attack must be initiated within the local network. The exploit has been disclosed to the public an...
CVE-2025-28031
CVE-2025-28031 affects TOTOLINK A810R (version 4.1.2cu.5182_B20201026). The root cause is a hardcoded password for the Telnet service stored in product.ini, enabling authentication exposure over the network. The CVSS reflects network access, high confidentiality impact, no integrity or availabili...
DIR-X4860 OS Command Injection Vulnerability in AUO Electronic Devices (Shanghai) Co.
The DIR-X4860 is a wireless router from China's AUO D-Link. AUO DIR-X4860 suffers from an operating system command injection vulnerability that originates from a failure to properly validate user input in the telnet service, which can be exploited by an unauthenticated, remote attacker to log int...
The vulnerability of the Telnet service of the microprogramming-based router AdTran NetVanta 3120 allows a intruder to gain unauthorized access to the device.
The vulnerability of the Telnet service provided by the microprogramming-based router software AdTran NetVanta 3120 is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to the device...
CVE-2023-24155
TOTOLINK T8 V4.1.5cu was discovered to contain a hard code password for the telnet service which is stored in the component /webcste/cgi-bin/product.ini...
CVE-2002-0629
The Telnet service for Polycom ViewStation before 7.2.4 allows remote attackers to cause a denial of service crash via multiple connections to the server...
IBM Infoprint Remote Management Simple DoS
Overview ======== IBM makes a series of TCP/IP enabled printers that come with remote management features: http://www.printers.ibm.com/R5PSC.NSF/Web/wglaserselect One of these features is a Telnet-based remote management service, which has a DoS vulnerability. The vulnerability discussed here was...
CVE-2001-0350
Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it, the second of two variants of...