Lucene search
K

10 matches found

CNVD
CNVD
added 2015/08/25 12:0 a.m.4 views

Actiontec GT784WN Modem Privilege Gain Vulnerability

The Actiontec GT784WN is a DSL Digital Subscriber Line modem router from Actiontec USA. A security vulnerability exists in Actiontec GT784WN modems using firmware versions prior to NCS01-1.0.13, which stems from the program's use of hard-coded certificates. A remote attacker could exploit the...

8.3CVSS7.1AI score0.00892EPSS
Exploits0References1
CNVD
CNVD
added 2015/08/25 12:0 a.m.2 views

Actiontec GT784WN Modem Cross-Site Request Forgery Vulnerability

The Actiontec GT784WN is a DSL Digital Subscriber Line modem router from Actiontec USA. A cross-site request forgery vulnerability exists in Actiontec GT784WN modems using firmware versions prior to NCS01-1.0.13. A remote attacker could exploit the vulnerability to hijack authentication or hijack...

6.8CVSS7.2AI score0.0066EPSS
Exploits0References1
NVD
NVD
added 2015/08/23 9:59 p.m.17 views

CVE-2015-2905

Cross-site request forgery CSRF vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote attackers to hijack the authentication or intranet connectivity of arbitrary users...

6.8CVSS7.3AI score0.0066EPSS
Exploits0References1
Prion
Prion
added 2015/08/23 9:59 p.m.11 views

Hardcoded credentials

Actiontec GT784WN modems with firmware before NCS01-1.0.13 have hardcoded credentials, which makes it easier for remote attackers to obtain root access by connecting to the web administration interface...

8.3CVSS7.3AI score0.00892EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2015/08/23 9:59 p.m.17 views

CVE-2015-2904

Actiontec GT784WN modems with firmware before NCS01-1.0.13 have hardcoded credentials, which makes it easier for remote attackers to obtain root access by connecting to the web administration interface...

8.3CVSS6.8AI score0.00892EPSS
Exploits0References1
Prion
Prion
added 2015/08/23 9:59 p.m.14 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote attackers to hijack the authentication or intranet connectivity of arbitrary users...

6.8CVSS7.9AI score0.0066EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2015/08/23 9:0 p.m.22 views

CVE-2015-2904

Actiontec GT784WN modems with firmware before NCS01-1.0.13 have hardcoded credentials, which makes it easier for remote attackers to obtain root access by connecting to the web administration interface...

6.7AI score0.00892EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/08/23 9:0 p.m.24 views

CVE-2015-2905

Cross-site request forgery CSRF vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote attackers to hijack the authentication or intranet connectivity of arbitrary users...

7.3AI score0.0066EPSS
Exploits0References1
CVE
CVE
added 2015/08/23 9:0 p.m.48 views

CVE-2015-2904

CVE-2015-2904 affects Actiontec GT784WN modems with firmware prior to NCS01-1.0.13, where hard-coded credentials allow remote attackers to obtain root access by connecting to the web management interface. Public documents confirm the vulnerability is tied to root-privilege credential exposure and...

8.3CVSS7AI score0.00892EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2015/08/23 9:0 p.m.53 views

CVE-2015-2905

The CVE-2015-2905 entry affects the Actiontec GT784WN Wireless N DSL Modem. The vulnerability is a Cross-Site Request Forgery (CSRF) in firmware versions prior to NCS01-1.0.13, which enables a remote attacker to hijack authentication or an intranet connection for arbitrary users. Affected device:...

6.8CVSS7.6AI score0.0066EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder