11 matches found
CVE-2025-59367
An authentication bypass vulnerability has been identified in certain DSL series routers, may allow remote attackers to gain unauthorized access into the affected system. Refer to the 'Security Update for DSL Series Router' section on the ASUS Security Advisory for more information...
CVE-2025-59367
An authentication bypass vulnerability has been identified in certain DSL series routers, may allow remote attackers to gain unauthorized access into the affected system. Refer to the 'Security Update for DSL Series Router' section on the ASUS Security Advisory for more information...
PT-2025-46772
Name of the Vulnerable Software and Affected Versions ASUS DSL Series Routers affected versions not specified Description An authentication bypass issue exists in ASUS DSL series routers. This flaw allows remote, unauthenticated attackers to gain unauthorized access to affected systems...
CVE-2025-34048
CVE-2025-34048 affects D-Link DSL-2730U/DSL-2750U/DSL-2750E ADSL routers. A path traversal flaw stems from insufficient input validation of the getpage parameter in the /cgi-bin/webproc CGI script, allowing an unauthenticated remote attacker to read arbitrary files on the device. Affected firmwar...
D-Link DSL Devices 'login.cgi' RCE Vulnerability - Active Check
D-Link DSL routers are prone to a remote command execution RCE vulnerability. This vulnerability was known to be used by an unknown Botnet in 2018. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...
CVE-2017-14698
CVE-2017-14698 affects multiple ASUS routers (DSL-AC51/AC52U/AC55U/DSL-N55U C1/D1/AC56U/N10_C1/N12U C1/N12E C1/N14U/N14U-B1/N16/N16U/N17U/N66U/AC750). Root cause: improper handling in mod_login.asp allows a remote, unauthenticated attacker to change passwords of arbitrary users via the http_passw...
New Call to Regulate IoT Security By Design
A Washington, D.C. think tank whose mission is critical infrastructure security has joined the call for lawmakers to consider regulating the security of connected devices. In a report published this week, the Institute for Critical Infrastructure Technology pinned the blame for a rash of Mirai...
CERT Warns of Hard-Coded Credentials in DSL SOHO Routers
DSL routers from a number of manufacturers contain hard-coded credentials that could allow a hacker to access the devices via telnet services and remotely control them. An advisory published Tuesday by the DHS-sponsored CERT at the Software Engineering Institute at Carnegie Mellon University said...
DSL routers contain hard-coded "XXXXairocon" credentials
Overview DSL routers by ASUS, DIGICOM, Observa Telecom, Philippine Long Distance Telephone PLDT, and ZTE contain hard-coded "XXXXairocon" credentials Description CWE-798: Use of Hard-coded Credentials DSL routers, including the ASUS DSL-N12E, DIGICOM DG-5524T, Observa Telecom RTA01N, Philippine...
CVE-2015-1188
The certificate verification functions in the HNDS service in Swisscom Centro Grande ADB DSL routers with firmware before 6.14.00 allows remote attackers to access the management functions via unknown vectors...
CVE-2015-1188
The CVE-2015-1188 issue affects Swisscom Centro Grande (ADB) DSL routers with firmware