Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-11308

Malware in sbrugna...

8.8CVSS8.8AI score0.01916EPSS
Exploits0References4
NVD
NVD
added 2022/09/08 8:15 a.m.11 views

CVE-2022-38094

OS command injection vulnerability in the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command...

8.8CVSS0.01536EPSS
Exploits0References2
OSV
OSV
added 2022/09/08 8:15 a.m.2 views

CVE-2022-35273

OS command injection vulnerability in GUI setting page of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command...

8.8CVSS6AI score0.01536EPSS
Exploits0References2
NVD
NVD
added 2022/09/08 8:15 a.m.12 views

CVE-2022-38394

Use of hard-coded credentials for the telnet server of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote unauthenticated attacker to execute an arbitrary OS command...

9.8CVSS0.00913EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/09/08 7:10 a.m.20 views

CVE-2022-38394

Use of hard-coded credentials for the telnet server of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote unauthenticated attacker to execute an arbitrary OS command...

9.9AI score0.00913EPSS
Exploits0References2
CVE
CVE
added 2022/09/08 7:10 a.m.60 views

CVE-2022-38094

CVE-2022-38094 is an OS command injection vulnerability in the Telnet function of CentreCOM AR260S V2 firmware prior to Ver. 3.3.7. The issue allows a remote authenticated attacker to execute arbitrary OS commands. Red Hat, NVD, JVN, and other connected records corroborate the condition and impac...

8.8CVSS9AI score0.01536EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/09/08 7:10 a.m.60 views

CVE-2022-35273

CVE-2022-35273 describes an OS command injection in the GUI setting page of CentreCOM AR260S V2 firmware prior to Ver.3.3.7. A remote authenticated attacker could execute arbitrary OS commands due to the vulnerable GUI handling. Affected product: CentreCOM AR260S V2; vulnerable component: GUI set...

8.8CVSS9AI score0.01536EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/09/08 7:10 a.m.20 views

CVE-2022-35273

OS command injection vulnerability in GUI setting page of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command...

9.2AI score0.01536EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/09/08 7:10 a.m.32 views

CVE-2022-34869

Undocumented hidden command that can be executed from the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command...

9.2AI score0.0095EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/08/29 12:0 a.m.2 views

PT-2022-4625 · Centrecom · Centrecom Ar260S V2

Name of the Vulnerable Software and Affected Versions: CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 Description: The issue is related to an OS command injection vulnerability in the GUI setting page, allowing a remote authenticated attacker to execute an arbitrary OS command. This...

10CVSS8.7AI score0.01536EPSS
Exploits0References8
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2022/08/29 12:0 a.m.59 views

JVN#45473612: Multiple vulnerabilities in CentreCOM AR260S V2

CentreCOM AR260S V2 provided by Allied Telesis K.K. contains multiple vulnerabilities listed below. OS command injection vulnerability in GUI setting page CWE-78 - CVE-2022-35273 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H| Base Score: 8.8 CVSS v2|...

9.8CVSS9.3AI score0.01536EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2022/08/29 12:0 a.m.2 views

PT-2022-4623 · Centrecom · Centrecom Ar260S V2

Name of the Vulnerable Software and Affected Versions: CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 Description: The issue is related to an undocumented hidden command that can be executed from the telnet function, allowing a remote authenticated attacker to execute an arbitrary OS...

8.8CVSS8.6AI score0.0095EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2022/08/29 12:0 a.m.3 views

PT-2022-4624 · Centrecom · Centrecom Ar260S V2

Name of the Vulnerable Software and Affected Versions: CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 Description: The issue is related to the use of hard-coded credentials for the telnet server, allowing a remote unauthenticated attacker to execute an arbitrary OS command. This could...

9.8CVSS9.5AI score0.00913EPSS
Exploits0References7
NVD
NVD
added 2017/04/28 4:59 p.m.14 views

CVE-2017-2125

Privilege escalation vulnerability in CentreCOM AR260S V2 remote authenticated attackers to gain privileges via the guest account...

8.8CVSS8.8AI score0.01916EPSS
Exploits0References3
Prion
Prion
added 2017/04/28 4:59 p.m.15 views

Privilege escalation

Privilege escalation vulnerability in CentreCOM AR260S V2 remote authenticated attackers to gain privileges via the guest account...

6.5CVSS8.7AI score0.01916EPSS
Exploits0References3
CVE
CVE
added 2017/04/28 4:0 p.m.47 views

CVE-2017-2125

CVE-2017-2125 describes a privilege escalation in the CentreCOM AR260S V2 router. An attacker who can log into the product as the guests account may obtain administrative privileges, enabling unintended operations. The root cause is a vulnerability in the guest account abuse pathway that allows p...

8.8CVSS8.7AI score0.01916EPSS
Exploits0References3Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2017/03/30 5:37 a.m.1 views

CentreCOM AR260S V2 vulnerable to privilege escalation

Overview CentreCOM AR260S V2 provided by Allied Telesis K.K. is a wired LAN router. CentreCOM AR260S V2 contains a privilege escalation vulnerability. Ziv Chang of Trend Micro Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warnin...

8.8CVSS7.2AI score0.01916EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2017/03/30 12:0 a.m.70 views

JVN#55121369: CentreCOM AR260S V2 vulnerable to privilege escalation

​CentreCOM AR260S V2 provided by Allied Telesis K.K. is a wired LAN router. CentreCOM AR260S V2 contains a privilege escalation vulnerability. Impact Unintended operations may be performed with administrative privileges by a user who can log into the product with "guest" account. Solution Apply...

8.8CVSS9.1AI score0.01916EPSS
Exploits0
Rows per page
Query Builder