VulnCheck KEV: CVE-2014-8357

backupsettings.html in the web administrative portal in Zhone zNID GPON 2426A before S3.0.501 places a session key in a URL, which allows remote attackers to obtain arbitrary user passwords via the sessionKey parameter in a getConfig action to backupsettings.conf...

Sagemcom F@ST3486 NET License Issues Vulnerability

Sagemcom Sagemcom F@ST3486 NET is a router from Sagemcom France. An authorization issue vulnerability exists in SAGEMCOM F@ST3486 NET DOCSIS 3.0, software NET4.109.0, which stems from incorrect access control in the configuration backup path when any valid session is running, allowing remote...

CVE-2020-11449

An issue was discovered on Technicolor TC7337 8.89.17 devices. An attacker can discover admin credentials in the backup file, aka backupsettings.conf...

CVE-2019-19889

An issue was discovered on Humax Wireless Voice Gateway HGB10R-2 201608171855 devices. The attacker can discover admin credentials in the backup file, aka backupsettings.conf...

CVE-2014-8357

backupsettings.html in the web administrative portal in Zhone zNID GPON 2426A before S3.0.501 places a session key in a URL, which allows remote attackers to obtain arbitrary user passwords via the sessionKey parameter in a getConfig action to backupsettings.conf...

CVE-2014-8357

backupsettings.html in the web administrative portal in Zhone zNID GPON 2426A before S3.0.501 places a session key in a URL, which allows remote attackers to obtain arbitrary user passwords via the sessionKey parameter in a getConfig action to backupsettings.conf. Recent assessments: Assessed...

Zhone ADSL2+ 4P Bridge & Router (Broadcom) - Multiple Vulnerabilities

Exploit for hardware platform in category web applications Document Title: =============== Zhone ADSL2+ 4P Bridge & Router Broadcom - Multiple Vulnerabilities Download: http://www.zhone.com/support/downloads/cpe/6218-I2/6218-I2R030220AnnexA.zip Product & Service Introduction:...