23 matches found
EUVD-2020-7354
Malware in sbrugna...
EUVD-2020-18826
Malware in sbrugna...
EUVD-2020-7151
Malware in sbrugna...
CVE-2020-26201
Askey AP5100WDualSIG1.01.097 and all prior versions use a weak password at the Operating System rlx-linux level. This allows an attacker to gain unauthorized access as an admin or root user to the device Operating System via Telnet or SSH...
CVE-2020-15357
Network Analysis functionality in Askey AP5100WDualSIG1.01.097 and all prior versions allows remote attackers to execute arbitrary commands via a shell metacharacter in the ping, traceroute, or route options...
CVE-2020-15357
Network Analysis functionality in Askey AP5100WDualSIG1.01.097 and all prior versions allows remote attackers to execute arbitrary commands via a shell metacharacter in the ping, traceroute, or route options...
CVE-2020-15357
Network Analysis functionality in Askey AP5100WDualSIG1.01.097 and all prior versions allows remote attackers to execute arbitrary commands via a shell metacharacter in the ping, traceroute, or route options...
CVE-2020-15023
Askey AP5100W devices through AP5100WDualSIG1.01.097 are affected by WPS PIN offline brute-force cracking. This arises because of issues with the random number selection for the Diffie-Hellman exchange. By capturing an attempted and even failed WPS authentication attempt, it is possible to brute...
CVE-2020-15023
Askey AP5100W devices through AP5100WDualSIG1.01.097 are affected by WPS PIN offline brute-force cracking. This arises because of issues with the random number selection for the Diffie-Hellman exchange. By capturing an attempted and even failed WPS authentication attempt, it is possible to brute...
CVE-2020-15023
Askey AP5100W devices through AP5100WDualSIG1.01.097 are affected by WPS PIN offline brute-force cracking. This arises because of issues with the random number selection for the Diffie-Hellman exchange. By capturing an attempted and even failed WPS authentication attempt, it is possible to brute...
CVE-2020-15023
Askey AP5100W devices through AP5100WDualSIG1.01.097 are affected by WPS PIN offline brute-force cracking. This arises because of issues with the random number selection for the Diffie-Hellman exchange. By capturing an attempted and even failed WPS authentication attempt, it is possible to brute...
CVE-2020-15023
CVE-2020-15023 affects Askey AP5100W devices up to AP5100W_Dual_SIG_1.01.097. The root cause is poor randomness in the Diffie-Hellman exchange, enabling offline WPS PIN brute-forcing: an attacker can observe WPS attempts and brute-force the authentication exchange, recovering the WPS PIN and ulti...
CVE-2020-15357
Network Analysis functionality in Askey AP5100WDualSIG1.01.097 and all prior versions allows remote attackers to execute arbitrary commands via a shell metacharacter in the ping, traceroute, or route options...
CVE-2020-15357
CVE-2020-15357 affects the Askey AP5100W_Dual_SIG_1.01.097 and all prior versions. The vulnerability involves remote command execution via a shell metacharacter in the options for ping, traceroute, or route, indicating a shell injection in network-analysis functionality. The connected documents c...
Askey AP5100W Dual SIG Operating System Command Injection Vulnerability
The Askey AP5100W Dual SIG is a router from Askey Electronics Technology China. A security vulnerability in the Askey AP5100W Dual SIG 1.01.097 and all prior versions can be exploited by remote attackers to execute arbitrary commands via ping, traceroute, or shell metacharacters in the routing...
Askey AP5100W Dual SIG Security Feature Issue Vulnerability
The Askey AP5100W Dual SIG is a router from China-based Askey Electronics Technology Askey. The Askey AP5100W Dual SIG suffers from a security signature issue vulnerability that stems from a faulty random number selection in the Diffie-Hellman exchange. By capturing an attempted or even failed WP...
CVE-2020-26201
Askey AP5100WDualSIG1.01.097 and all prior versions use a weak password at the Operating System rlx-linux level. This allows an attacker to gain unauthorized access as an admin or root user to the device Operating System via Telnet or SSH...
CVE-2020-26201
Askey AP5100WDualSIG1.01.097 and all prior versions use a weak password at the Operating System rlx-linux level. This allows an attacker to gain unauthorized access as an admin or root user to the device Operating System via Telnet or SSH...
Design/Logic Flaw
Askey AP5100WDualSIG1.01.097 and all prior versions use a weak password at the Operating System rlx-linux level. This allows an attacker to gain unauthorized access as an admin or root user to the device Operating System via Telnet or SSH...
CVE-2020-26201
The CVE-2020-26201 issue affects Askey AP5100W Dual SIG devices (version 1.01.097 and older) where a weak OS password on the rlx-linux layer allows an attacker to gain admin/root access via Telnet or SSH. No exploitation details are provided in the sources. Mitigations suggested in PT‑Security in...