82 matches found
ETIC Telecom Remote Access Server 跨站请求伪造漏洞
ETIC Telecom Remote Access Server is a remote maintenance solution from ETIC Telecom, France. It is designed to enable manufacturers to remotely maintain automated equipment. A cross-site request forgery vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.9.19, which ste...
PT-2025-2389 · Etic Telecom · Etic Telecom Remote Access Server
Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.9.19 Description: The issue allows an external attacker with no access to the device to force the end user into submitting a "setconf" method request, which can lead to denial of servi...
ETIC Telecom Remote Access Server 安全漏洞
ETIC Telecom Remote Access Server is a remote maintenance solution from the French company ETIC Telecom. It is designed to enable manufacturers to maintain automated equipment remotely. A security vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.5.0, which stems from...
PT-2025-2391 · Etic Telecom · Etic Telecom Remote Access Server
Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.5.0 Description: The issue exposes clear text credentials in the web portal. An attacker can access the ETIC RAS web portal, view the HTML code, and establish a connection to the ETIC...
PT-2025-2390 · Etic Telecom · Etic Telecom Remote Access Server
Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.5.0 Description: The issue concerns reflected cross-site scripting in the appliance site name. The ETIC RAS web server saves the site name and then presents it to the administrators in...
ETIC Telecom Remote Access Server 跨站脚本漏洞
ETIC Telecom Remote Access Server is a remote maintenance solution from the French company ETIC Telecom. It is designed to enable manufacturers to remotely maintain automated equipment. A cross-site scripting vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.5.0, which...
ETIC Telecom Remote Access Server 跨站脚本漏洞
ETIC Telecom Remote Access Server is a remote maintenance solution from the French company ETIC Telecom. It is designed to enable manufacturers to remotely maintain automated equipment. A cross-site scripting vulnerability exists in ETIC Telecom Remote Access Server versions prior to 4.5.0, which...
PT-2025-2393 · Etic Telecom · Etic Telecom Remote Access Server
Name of the Vulnerable Software and Affected Versions: ETIC Telecom Remote Access Server RAS versions prior to 4.5.0 Description: The issue concerns reflected cross site scripting XSS attacks. This occurs in the get view method under the view parameter. The ETIC RAS web server uses dynamic pages...
CVE-2023-3453
ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition...
CVE-2023-3453
ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition...
Race condition
ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition...
CVE-2023-3453 ETIC Telecom Insecure Default Initialization of Resource
ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition...
CVE-2023-3453
CVE-2023-3453 affects ETIC Telecom RAS (Remote Access Server) versions 4.7.0 and earlier. The vulnerability stems from insecure default initialization where the web management portal authentication is disabled by default, allowing an attacker with adjacent network access to reconfigure the device...
CVE-2023-3453 ETIC Telecom Insecure Default Initialization of Resource
ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with adjacent network access to alter the configuration of the device or cause a denial-of-service condition...
PT-2023-24911 · Etic Telecom · Etic Telecom Ras
Name of the Vulnerable Software and Affected Versions: ETIC Telecom RAS versions 4.7.0 and prior Description: The web management portal authentication is disabled by default in the affected versions. This could allow an attacker with adjacent network access to alter the configuration of the devic...
ETIC Telecom RAS 安全漏洞
ETIC Telecom RAS is a series of telecom remote access servers from the French company ETIC Telecom. A security vulnerability exists in ETIC Telecom RAS version 4.7.0 and prior versions, which stems from disabling Web management portal authentication by default, allowing an attacker with access to...
ETIC Telecom RAS Authentication
1. EXECUTIVE SUMMARY CVSS v3 7.1 ATTENTION: Exploitable with adjacent access/low attack complexity Vendor: ETIC Telecom Equipment: Remote Access Server RAS Vulnerability: Insecure Default Initialization of Resource 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an...
CVE-2022-41607
All versions of ETIC Telecom Remote Access Server RAS 4.5.0 and prior’s application programmable interface API is vulnerable to directory traversal through several different methods. This could allow an attacker to read sensitive files from the server, including SSH private keys, passwords,...
CVE-2022-41607
All versions of ETIC Telecom Remote Access Server RAS 4.5.0 and prior’s application programmable interface API is vulnerable to directory traversal through several different methods. This could allow an attacker to read sensitive files from the server, including SSH private keys, passwords,...
CVE-2022-40981
All versions of ETIC Telecom Remote Access Server RAS 4.5.0 and prior is vulnerable to malicious file upload. An attacker could take advantage of this to store malicious files on the server, which could override sensitive and useful existing files on the filesystem, fill the hard disk to full...