6 matches found
Vulnerable WiFi Alliance example code found in Arcadyan FMIMG51AX000J
Overview A command injection vulnerability has been identified in the Wi-Fi Test Suite, a tool developed by the WiFi Alliance, which has been found deployed on Arcadyan routers. This flaw allows an unauthenticated local attacker to exploit the Wi-Fi Test Suite by sending specially crafted packets...
CVE-2020-9419
Multiple stored cross-site scripting XSS vulnerabilities in Arcadyan Wifi routers VRV9506JAC23 allow remote attackers to inject arbitrary web script or HTML via the hostName and domainname parameters present in the LAN configuration section of the administrative dashboard...
Hackers Exploiting New Auth Bypass Bug Affecting Millions of Arcadyan Routers
Unidentified threat actors are actively exploiting a critical authentication bypass vulnerability to hijack home routers as part of an effort to co-opt them to a Mirai-variant botnet used for carrying out DDoS attacks, merely two days after its public disclosure. Tracked as CVE-2021-20090 CVSS...
The vulnerability of the web interface of the Microprogramming Software-based Arcadyan Routers allows a hacker to bypass the authentication process.
The vulnerability of the web interface of the Microprogramming Software-based Arcadyan Routers Buffalo relates to the possibility of bypassing the path to the catalog. Exploiting this vulnerability can allow a malicious actor to circumvent the authentication process...
Arcadyan-based routers and modems vulnerable to authentication bypass
Overview A path traversal vulnerability exists in numerous routers manufactured by multiple vendors using Arcadyan based software. This vulnerability allows an unauthenticated user access to sensitive information and allows for the alteration of the router configuration. Description The...
More than 100000 Wireless Routers have Default Backdoor
A recently reported flaw that allowed an attacker to drastically reduce the number of attempts needed to guess the WPS PIN of a wireless router isn't necessary for some Arcadyan based routers anymore. Last year it was exposed that the WiFi Protected Setup WPS PIN is susceptible to a brute force...