Lucene search
+L

17 matches found

Nuclei
Nuclei
added 2026/06/16 7:13 a.m.143 views

Buffalo WSR-2533DHPL2 - Path Traversal

Buffalo WSR-2533DHPL2 firmware version = 1.02 and WSR-2533DHP3 firmware version = 1.24 are susceptible to a path traversal vulnerability that could allow unauthenticated remote attackers to bypass authentication in their web interfaces. id: CVE-2021-20090 info: name: Buffalo WSR-2533DHPL2 - Path...

9.8CVSS8.3AI score0.99983EPSS
Exploits5References5
0day.today
0day.today
added 2024/08/27 12:0 a.m.183 views

HughesNet HT2000W Satellite Modem - Password Reset Exploit

Exploit Title: HughesNet HT2000W Satellite Modem Arcadyan httpd 1.0 - Password Reset Exploit Author: Simon Greenblatt Vendor: HughesNet Version: Arcadyan httpd 1.0 Tested on: Linux CVE: CVE-2021-20090 import sys import requests import re import base64 import hashlib import urllib red = "\0330;41m...

9.8CVSS7.4AI score0.99983EPSS
Exploits5
Packet Storm
Packet Storm
added 2024/08/26 12:0 a.m.288 views

HughesNet HT2000W Satellite Modem Password Reset

Exploit Title: HughesNet HT2000W Satellite Modem Arcadyan httpd 1.0 - Password Reset Date: 7/16/24 Exploit Author: Simon Greenblatt Vendor: HughesNet Version: Arcadyan httpd 1.0 Tested on: Linux CVE: CVE-2021-20090 import sys import requests import re import base64 import hashlib import urllib re...

9.8CVSS7AI score0.99983EPSS
Exploits5
Exploit DB
Exploit DB
added 2024/08/24 12:0 a.m.255 views

HughesNet HT2000W Satellite Modem - Password Reset

Exploit Title: HughesNet HT2000W Satellite Modem Arcadyan httpd 1.0 - Password Reset Date: 7/16/24 Exploit Author: Simon Greenblatt Vendor: HughesNet Version: Arcadyan httpd 1.0 Tested on: Linux CVE: CVE-2021-20090 import sys import requests import re import base64 import hashlib import urllib re...

9.8CVSS7AI score0.99983EPSS
Exploits5
Information Security Automation
Information Security Automation
added 2022/10/21 8:10 p.m.162 views

Joint Advisory AA22-279A and Vulristics

Hello everyone! This episode will be about the new hot twenty vulnerabilities from CISA, NSA and FBI, Joint cybersecurity advisory CSA AA22-279A, and how I analyzed these vulnerabilities using my open source project Vulristics. Alternative video link for Russia: Americans cant just release a list...

10CVSS1.1AI score0.99999EPSS
Exploits975
Tenable Nessus
Tenable Nessus
added 2021/11/09 12:0 a.m.123 views

Buffalo Router Path Traversal (CVE-2021-20090)

Binary data buffaloCVE-2021-20090pathtraversal.nbin...

9.8CVSS8.4AI score0.99983EPSS
Exploits5References3
Prion
Prion
added 2021/10/11 5:15 p.m.29 views

Command injection

The Telus Wi-Fi Hub PRV65B444A-S-TS with firmware version 3.00.20 is affected by an authenticated command injection vulnerability in multiple parameters passed to tr69cmd.cgi. A remote attacker connected to the router's LAN and authenticated with a super user account, or using a bypass...

9CVSS8.7AI score0.99983EPSS
Exploits6References1Affected Software1
Cvelist
Cvelist
added 2021/10/11 4:48 p.m.31 views

CVE-2021-20122

The Telus Wi-Fi Hub PRV65B444A-S-TS with firmware version 3.00.20 is affected by an authenticated command injection vulnerability in multiple parameters passed to tr69cmd.cgi. A remote attacker connected to the router's LAN and authenticated with a super user account, or using a bypass...

9AI score0.06531EPSS
Exploits1References1
NVD
NVD
added 2021/09/01 12:15 p.m.29 views

CVE-2021-38703

Wireless devices running certain Arcadyan-derived firmware such as KPN Experia WiFi 1.00.15 do not properly sanitise user input to the syslog configuration form. An authenticated remote attacker could leverage this to alter the device configuration and achieve remote code execution. This can be...

9CVSS0.0432EPSS
Exploits1References2
Prion
Prion
added 2021/09/01 12:15 p.m.35 views

Design/Logic Flaw

Wireless devices running certain Arcadyan-derived firmware such as KPN Experia WiFi 1.00.15 do not properly sanitise user input to the syslog configuration form. An authenticated remote attacker could leverage this to alter the device configuration and achieve remote code execution. This can be...

9CVSS8.3AI score0.99983EPSS
Exploits6References2Affected Software1
Check Point Advisories
Check Point Advisories
added 2021/08/23 12:0 a.m.20 views

Buffalo Routers Directory Traversal (CVE-2021-20090; CVE-2021-20091)

A directory traversal vulnerability exists in Buffalo routers. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...

7.5CVSS5.9AI score0.99983EPSS
Exploits5
seebug.org
seebug.org
added 2021/08/11 12:0 a.m.838 views

Buffalo和Arcadyan多款路由器认证绕过RCE等多个漏洞

Tenable has discovered multiple vulnerabilities in routers manufactured by Arcadyan. During the disclosure process for the issues discovered in the Buffalo routers, Tenable discovered that CVE-2021-20090 affected many more devices, as the root cause of the vulnerability exists in the underlying...

7.5CVSS0.2AI score0.99983EPSS
Exploits5
The Hacker News
The Hacker News
added 2021/08/10 9:27 a.m.694 views

Hackers Exploiting New Auth Bypass Bug Affecting Millions of Arcadyan Routers

Unidentified threat actors are actively exploiting a critical authentication bypass vulnerability to hijack home routers as part of an effort to co-opt them to a Mirai-variant botnet used for carrying out DDoS attacks, merely two days after its public disclosure. Tracked as CVE-2021-20090 CVSS...

10CVSS0.8AI score0.99999EPSS
Exploits17
Circl
Circl
added 2021/08/04 11:27 a.m.6 views

CVE-2021-20090

creationtimestamp| type| source ---|---|--- 2021-08-04 11:27:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/3986 2021-08-08 08:22:21+00:00| exploited| https://t.me/cKure/6532 2021-08-08 14:28:35+00:00| exploited| https://t.me/CyberSecurityTechnologies/4021 2021-08-08...

9.8CVSS7.4AI score0.99983EPSS
Exploits5References15
CERT
CERT
added 2021/07/20 12:0 a.m.98 views

Arcadyan-based routers and modems vulnerable to authentication bypass

Overview A path traversal vulnerability exists in numerous routers manufactured by multiple vendors using Arcadyan based software. This vulnerability allows an unauthenticated user access to sensitive information and allows for the alteration of the router configuration. Description The...

9.8CVSS8.3AI score0.99983EPSS
Exploits5References4
ATTACKERKB
ATTACKERKB
added 2021/04/29 12:0 a.m.35 views

CVE-2021-20090

A path traversal vulnerability in the web interfaces of Buffalo WSR-2533DHPL2 firmware version = 1.02 and WSR-2533DHP3 firmware version = 1.24 could allow unauthenticated remote attackers to bypass authentication. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed...

9.8CVSS8.2AI score0.99983EPSS
In wildExploits5References4
CVE
CVE
added 2021/04/29 12:0 a.m.1299 views

CVE-2021-20090

The CVE-2021-20090 issue affects Buffalo WSR-series routers (WSR-2533DHPL2 <= 1.02 and WSR-2533DHP3

9.8CVSS8.1AI score0.99983EPSS
In wildExploits5References4Affected Software1
Rows per page
Query Builder