Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7431

Malware in sbrugna...

10CVSS9.5AI score0.02974EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/22 1:9 p.m.8 views

CVE-2018-15557

An issue was discovered in the Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 devices. An attacker can statically set his/her IP to anything on the 169.254.1.0/24 subnet, and obtain root access by connecting to 169.254.1.2 port 23 with telnet/netcat...

10CVSS6.9AI score0.03258EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:42 a.m.8 views

CVE-2018-15555

On Telus Actiontec WEB6000Q v1.1.02.22 devices, an attacker can login with root level access with the user "root" and password "admin" by using the enabled onboard UART headers...

10CVSS7.2AI score0.02974EPSS
Exploits1References1
NVD
NVD
added 2019/06/28 3:15 p.m.19 views

CVE-2018-15555

On Telus Actiontec WEB6000Q v1.1.02.22 devices, an attacker can login with root level access with the user "root" and password "admin" by using the enabled onboard UART headers...

10CVSS9.6AI score0.02974EPSS
Exploits1References2
OSV
OSV
added 2019/06/28 3:15 p.m.5 views

CVE-2018-15555

On Telus Actiontec WEB6000Q v1.1.02.22 devices, an attacker can login with root level access with the user "root" and password "admin" by using the enabled onboard UART headers...

9.8CVSS5.8AI score0.02974EPSS
Exploits1References2
NVD
NVD
added 2019/06/27 5:15 p.m.27 views

CVE-2018-15557

An issue was discovered in the Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 devices. An attacker can statically set his/her IP to anything on the 169.254.1.0/24 subnet, and obtain root access by connecting to 169.254.1.2 port 23 with telnet/netcat...

10CVSS8.6AI score0.03258EPSS
Exploits2References2
Prion
Prion
added 2019/06/27 5:15 p.m.20 views

Default credentials

The Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 allows login with root level access with the user "root" and an empty password by using the enabled onboard UART headers...

10CVSS9.5AI score0.03258EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2019/06/27 4:55 p.m.85 views

CVE-2018-15556

CVE-2018-15556 affects the Quantenna WiFi Controller in Telus Actiontec WEB6000Q (firmware v1.1.02.22). An attacker can log in as root with an empty password via the onboard UART headers, enabling full shell access. Public PoC material exists (PacketStorm/full disclosure) describing UART-based pr...

10CVSS9.5AI score0.03258EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2019/06/27 4:55 p.m.35 views

CVE-2018-15556

The Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 allows login with root level access with the user "root" and an empty password by using the enabled onboard UART headers...

9.6AI score0.03258EPSS
Exploits2References2
CVE
CVE
added 2019/06/27 4:52 p.m.73 views

CVE-2018-15557

CVE-2018-15557 affects the Quantenna WiFi Controller in Telus Actiontec WEB6000Q devices (firmware v1.1.02.22). The issue allows an attacker with access to the 169.254.1.0/24 link-local subnet to obtain root by connecting to 169.254.1.2 on TCP port 23 (telnet/netcat). Documents corroborate a priv...

10CVSS8.5AI score0.03258EPSS
Exploits2References2Affected Software1
Packet Storm
Packet Storm
added 2019/06/12 12:0 a.m.194 views

Telus Actiontec WEB6000Q Denial Of Service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Device Details Discovered By: Andrew Klaus [email protected] Vendor: Actiontec Telus Branded Model: WEB6000Q Affected Firmware: 1.1.02.22 Reported: July 2018 CVE: Not needed since update is pushed by the provider. Summary of Findings By querying CGI...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2019/06/12 12:0 a.m.130 views

Telus Actiontec WEB6000Q Serial Number Information Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Device Details Discovered By: Andrew Klaus [email protected] Vendor: Actiontec Telus Branded, but may work on others Model: WEB6000Q Affected Firmware: 1.1.02.22 Reported: Sept 2018 CVE: Not needed since update is pushed by the provider. Summary of...

7.4AI score
Exploits0
Rows per page
Query Builder