Lucene search
K

136 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:9 a.m.8 views

CVE-2019-12789

An issue was discovered on Actiontec T2200H T2200H-31.128L.08 devices, as distributed by Telus. By attaching a UART adapter to the UART pins on the system board, an attacker can use a special key sequence Ctrl-\ to obtain a shell with root privileges. After gaining root access, the attacker can...

7.2CVSS7.1AI score0.00574EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:54 a.m.8 views

CVE-2013-3097

Unspecified Cross-site scripting XSS vulnerability in the Verizon FIOS Actiontec MI424WR-GEN3I router...

6.1CVSS6AI score0.0146EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/07/25 12:0 a.m.4 views

The vulnerability of the HTTP-server of the microprogrammed Wi-Fi range extension software from Actiontec, the WCB6200Q, allows a hacker to execute arbitrary code.

The vulnerability of the HTTP-server of the microprogrammed Wi-Fi range extension software Actiontec WCB6200Q is related to the use of uncontrolled format strings in processing HTTP request headers. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.8CVSS8AI score0.01205EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/07/25 12:0 a.m.7 views

The vulnerability of the HTTP-server of the microprogrammed Wi-Fi range extension software from Actiontec, the WCB6200Q, allows a hacker to execute arbitrary code.

The vulnerability of the HTTP-server of the microprogrammed Wi-Fi extension software from Actiontec, WCB6200Q, is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

8.8CVSS8.4AI score0.01119EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/07/25 12:0 a.m.6 views

The vulnerability of the uh_get_postdata_withupload() function on the HTTP server of the Actiontec WCB6200Q Wi-Fi extension software allows a hacker to execute arbitrary code.

The vulnerability of the uhgetpostdatawithupload function on the HTTP server of the Actiontec WCB6200Q Wi-Fi extension software-related microprogramming devices is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to...

8.8CVSS8.4AI score0.01119EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/07/25 12:0 a.m.6 views

The vulnerability of the uh_tcp_recv_content() function in the HTTP-server of the microprogrammed Wi-Fi extension software from Actiontec WCB6200Q allows a hacker to execute arbitrary code.

The vulnerability of the uhtcprecvcontent function on the HTTP-server of the Actiontec WCB6200Q Wi-Fi extension software-related microprogramming devices is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker operati...

8.8CVSS8AI score0.01119EPSS
Exploits0References3
NVD
NVD
added 2024/06/19 12:15 a.m.28 views

CVE-2024-6145

Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specific flaw exis...

8.8CVSS0.01205EPSS
Exploits0References1
NVD
NVD
added 2024/06/19 12:15 a.m.23 views

CVE-2024-6146

Actiontec WCB6200Q uhgetpostdatawithupload Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this...

8.8CVSS0.01119EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 12:15 a.m.3 views

CVE-2024-6146

Actiontec WCB6200Q uhgetpostdatawithupload Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this...

8.8CVSS7.8AI score0.01119EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 12:15 a.m.3 views

CVE-2024-6144

Actiontec WCB6200Q Multipart Boundary Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this...

8.8CVSS6.3AI score0.01119EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 12:15 a.m.4 views

CVE-2024-6145

Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specific flaw exis...

8.8CVSS7.7AI score0.01205EPSS
Exploits0References1
NVD
NVD
added 2024/06/19 12:15 a.m.21 views

CVE-2024-6143

Actiontec WCB6200Q uhtcprecvheader Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specifi...

8.8CVSS0.01119EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 12:15 a.m.4 views

CVE-2024-6143

Actiontec WCB6200Q uhtcprecvheader Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specifi...

8.8CVSS7.7AI score0.01119EPSS
Exploits0References1
NVD
NVD
added 2024/06/19 12:15 a.m.24 views

CVE-2024-6142

Actiontec WCB6200Q uhtcprecvcontent Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specif...

8.8CVSS0.01119EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/18 11:39 p.m.19 views

CVE-2024-6146 Actiontec WCB6200Q uh_get_postdata_withupload Stack-based Buffer Overflow Remote Code Execution Vulnerability

Actiontec WCB6200Q uhgetpostdatawithupload Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this...

8.8CVSS7.8AI score0.01119EPSS
Exploits0References1
CVE
CVE
added 2024/06/18 11:39 p.m.54 views

CVE-2024-6146

CVE-2024-6146 concerns Actiontec WCB6200Q with a stack-based buffer overflow in the HTTP server function responsible for handling postdata with upload (uh_get_postdata_withupload). The flaw arises from insufficient validation of user-supplied data length before copying into a fixed-length stack-b...

8.8CVSS9.1AI score0.01119EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/06/18 11:39 p.m.29 views

CVE-2024-6146 Actiontec WCB6200Q uh_get_postdata_withupload Stack-based Buffer Overflow Remote Code Execution Vulnerability

Actiontec WCB6200Q uhgetpostdatawithupload Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this...

8.8CVSS0.01119EPSS
Exploits0References1
CVE
CVE
added 2024/06/18 11:39 p.m.57 views

CVE-2024-6145

The CVE-2024-6145 entry concerns Actiontec WCB6200Q routers. Concrete details in connected documents show that the vulnerability exists in the HTTP server, where a crafted Cookie header can trigger a format specifier from a user-supplied string, allowing a network-adjacent attacker to execute arb...

8.8CVSS9AI score0.01205EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/18 11:39 p.m.12 views

CVE-2024-6145 Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability

Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specific flaw exis...

8.8CVSS9AI score0.01205EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/18 11:39 p.m.21 views

CVE-2024-6145 Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability

Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Actiontec WCB6200Q routers. Authentication is not required to exploit this vulnerability. The specific flaw exis...

8.8CVSS0.01205EPSS
Exploits0References1
Rows per page
Query Builder