CVE-2025-71317 NetMan 204 Hard-coded Backdoor Credentials

NetMan 204 contains a hard-coded backdoor account with the username and password 'eurek' that grants administrative access. A remote, unauthenticated attacker can authenticate through the cgi-bin/login.cgi endpoint for example /cgi-bin/login.cgi?username=eurek&password=eurek, which due to lax...

VulnCheck KEV: CVE-2025-34033

An OS command injection vulnerability exists in the Blue Angel Software Suite running on embedded Linux devices via the pingaddr parameter in the webctrl.cgi script. The application fails to properly sanitize input before passing it to the system-level ping command. An authenticated attacker can...

Cradlepoint Router has multiple vulnerabilities

Cradlepoint, the industry leader in Modems and Routers for 4G/LTE networks, provides the highest caliber solutions for enterprise 4G/LTD/Wi-Fi wireless networks and provides managed services to ensure optimal network uptime. Cradlepoint Router has multiple vulnerabilities. An attacker using...

Backdoor credentials found in 4 TOTOLINK router models

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory Information Title: Backdoor credentials found in 4 TOTOLINK router models Advisory URL: https://pierrekim.github.io/advisories/2015-totolink-0x03.txt Blog URL:...

4 TOTOLINK Router Models - Backdoor Credentials Vulnerability

4 TOTOLINK router models are backdoored with hardcoded credentials. Advisory Information Title: Backdoor credentials found in 4 TOTOLINK router models Advisory URL: https://pierrekim.github.io/advisories/2015-totolink-0x03.txt Blog URL:...

4 TOTOLINK Router Models - Backdoor Credentials

4 TOTOLINK Router Models - Backdoor Credentials Advisory Information Title: Backdoor credentials found in 4 TOTOLINK router models Advisory URL: https://pierrekim.github.io/advisories/2015-totolink-0x03.txt Blog URL:...

Grandstream Devices Backdoor Credentials (Telnet)

The remote Grandstream device has the default telnet user and password SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Multiple Vulnerabilities Haunt Long List of PLC Modules

A long list of industrial-control modules manufactured by Schneider Electric and used to control operations at various industrial facilities contain multiple weaknesses and vulnerabilities that could allow an attacker to modify the firmware, login remotely and run arbitrary code on the vulnerable...