Lucene search
+L

82 matches found

CNNVD
CNNVD
added 2025/01/17 12:0 a.m.5 views

ETIC Telecom Remote Access Server 跨站请求伪造漏洞

ETIC Telecom Remote Access Server is a remote maintenance solution from ETIC Telecom, France. It is designed to enable manufacturers to remotely maintain automated equipment. A cross-site request forgery vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.9.19, which ste...

7.4CVSS6.5AI score0.0017EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.4 views

PT-2025-2389 · Etic Telecom · Etic Telecom Remote Access Server

Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.9.19 Description: The issue allows an external attacker with no access to the device to force the end user into submitting a "setconf" method request, which can lead to denial of servi...

7.4CVSS6.5AI score0.0017EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/01/17 12:0 a.m.5 views

ETIC Telecom Remote Access Server 安全漏洞

ETIC Telecom Remote Access Server is a remote maintenance solution from the French company ETIC Telecom. It is designed to enable manufacturers to maintain automated equipment remotely. A security vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.5.0, which stems from...

8.6CVSS6.5AI score0.00231EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.4 views

PT-2025-2391 · Etic Telecom · Etic Telecom Remote Access Server

Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.5.0 Description: The issue exposes clear text credentials in the web portal. An attacker can access the ETIC RAS web portal, view the HTML code, and establish a connection to the ETIC...

8.6CVSS6.8AI score0.00231EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.6 views

PT-2025-2390 · Etic Telecom · Etic Telecom Remote Access Server

Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.5.0 Description: The issue concerns reflected cross-site scripting in the appliance site name. The ETIC RAS web server saves the site name and then presents it to the administrators in...

6.1CVSS6.3AI score0.00217EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/01/17 12:0 a.m.5 views

ETIC Telecom Remote Access Server 跨站脚本漏洞

ETIC Telecom Remote Access Server is a remote maintenance solution from the French company ETIC Telecom. It is designed to enable manufacturers to remotely maintain automated equipment. A cross-site scripting vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.5.0, which...

6.1CVSS5.7AI score0.00224EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/17 12:0 a.m.3 views

ETIC Telecom Remote Access Server 跨站脚本漏洞

ETIC Telecom Remote Access Server is a remote maintenance solution from the French company ETIC Telecom. It is designed to enable manufacturers to remotely maintain automated equipment. A cross-site scripting vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.5.0, which...

6.1CVSS5.7AI score0.00217EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.4 views

PT-2025-2393 · Etic Telecom · Etic Telecom Remote Access Server

Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.5.0 Description: The issue concerns reflected cross site scripting XSS attacks. This occurs in the get view method under the view parameter. The ETIC RAS web server uses dynamic pages...

6.1CVSS5.5AI score0.00224EPSS
Exploits0References6
NVD
NVD
added 2023/08/23 10:15 p.m.26 views

CVE-2023-3453

ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition...

8.1CVSS7.6AI score0.0029EPSS
Exploits0References1
OSV
OSV
added 2023/08/23 10:15 p.m.5 views

CVE-2023-3453

ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition...

8.1CVSS5.8AI score0.0029EPSS
Exploits0References1
Prion
Prion
added 2023/08/23 10:15 p.m.28 views

Race condition

ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition...

4.8CVSS8AI score0.0029EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/08/23 9:14 p.m.39 views

CVE-2023-3453 ETIC Telecom Insecure Default Initialization of Resource

ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition...

7.1CVSS8.3AI score0.0029EPSS
Exploits0References1
CVE
CVE
added 2023/08/23 9:14 p.m.68 views

CVE-2023-3453

CVE-2023-3453 affects ETIC Telecom RAS (Remote Access Server) versions 4.7.0 and earlier. The vulnerability stems from insecure default initialization where the web management portal authentication is disabled by default, allowing an attacker with adjacent network access to reconfigure the device...

8.1CVSS7.5AI score0.0029EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/23 9:14 p.m.17 views

CVE-2023-3453 ETIC Telecom Insecure Default Initialization of Resource

ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition...

7.1CVSS7.1AI score0.0029EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/23 12:0 a.m.14 views

PT-2023-24911 · Etic Telecom · Etic Telecom Ras

Name of the Vulnerable Software and Affected Versions: ETIC Telecom RAS versions 4.7.0 and prior Description: The web management portal authentication is disabled by default in the affected versions. This could allow an attacker with adjacent network access to alter the configuration of the devic...

8.1CVSS8AI score0.0029EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/08/23 12:0 a.m.7 views

ETIC Telecom RAS 安全漏洞

ETIC Telecom RAS is a series of telecom remote access servers from the French company ETIC Telecom. A security vulnerability exists in ETIC Telecom RAS version 4.7.0 and prior versions, which stems from disabling Web management portal authentication by default, allowing an attacker with access to...

8.1CVSS7.8AI score0.0029EPSS
Exploits0References2
ICS
ICS
added 2023/07/27 12:0 a.m.30 views

ETIC Telecom RAS Authentication

1. EXECUTIVE SUMMARY CVSS v3 7.1 ATTENTION: Exploitable with adjacent access/low attack complexity Vendor: ETIC Telecom Equipment: Remote Access Server RAS Vulnerability: Insecure Default Initialization of Resource 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an...

8.1CVSS8.2AI score0.0029EPSS
Exploits0References10
NVD
NVD
added 2022/11/10 10:15 p.m.22 views

CVE-2022-41607

All versions of ETIC Telecom Remote Access Server RAS 4.5.0 and prior’s application programmable interface API is vulnerable to directory traversal through several different methods. This could allow an attacker to read sensitive files from the server, including SSH private keys, passwords,...

7.5CVSS0.00952EPSS
Exploits0References1
OSV
OSV
added 2022/11/10 10:15 p.m.6 views

CVE-2022-41607

All versions of ETIC Telecom Remote Access Server RAS 4.5.0 and prior’s application programmable interface API is vulnerable to directory traversal through several different methods. This could allow an attacker to read sensitive files from the server, including SSH private keys, passwords,...

7.5CVSS5.8AI score0.00952EPSS
Exploits0References1
NVD
NVD
added 2022/11/10 10:15 p.m.21 views

CVE-2022-40981

All versions of ETIC Telecom Remote Access Server RAS 4.5.0 and prior is vulnerable to malicious file upload. An attacker could take advantage of this to store malicious files on the server, which could override sensitive and useful existing files on the filesystem, fill the hard disk to full...

10CVSS0.00503EPSS
Exploits0References1
Rows per page
Query Builder