1303 matches found
CVE-2019-20543
An issue was discovered on Samsung mobile devices with P9.0 software. Attackers can bypass Factory Reset Protection FRP via SamsungPay mini. The Samsung ID is SVE-2019-15090 November 2019...
CVE-2019-20570
An issue was discovered on Samsung mobile devices with P9.0, O8.0, and N7.1 software. Attackers can bypass Factory Reset Protection FRP via Smart Switch. The Samsung ID is SVE-2019-15138 September 2019...
CVE-2019-20552
An issue was discovered on Samsung mobile devices with P9.0 software. Attackers can bypass Factory Reset Protection FRP via an RCS call. The Samsung ID is SVE-2019-15035 October 2019...
CVE-2019-20615
An issue was discovered on Samsung mobile devices with N7.x and O8.x software. Attackers can bypass Factory Reset Protection FRP via SVoice T&C.; The Samsung ID is SVE-2018-13547 March 2019...
CVE-2019-20569
An issue was discovered on Samsung mobile devices with P9.0 software. Attackers can bypass Factory Reset Protection FRP via the status bar. The Samsung ID is SVE-2019-15089 September 2019...
CVE-2019-20554
An issue was discovered on Samsung mobile devices with O8.x software. Attackers can bypass Factory Reset Protection FRP via an external keyboard. The Samsung ID is SVE-2019-15164 October 2019...
CVE-2020-12750
An issue was discovered on Samsung mobile devices with Q10.0 software. Attackers can bypass Factory Reset Protection FRP via SPEN. The Samsung ID is SVE-2020-17019 May 2020...
CVE-2020-10839
An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. Attackers can bypass Factory Reset Protection FRP via a SIM card. The Samsung ID is SVE-2019-16193 February 2020...
CVE-2020-24363
TP-Link TL-WA855RE V5 20200415-rel37464 devices allow an unauthenticated attacker on the same network to submit a TDDPRESET POST request for a factory reset and reboot. The attacker can then obtain incorrect access control by setting a new administrative password...
PT-2026-2147
Name of the Vulnerable Software and Affected Versions Tenda 300Mbps Wireless Router F3 Tenda N300 Easy Setup Router Description The routers transmit login credentials in plaintext during the initial login or after a factory reset through the web-based administrative interface. An attacker on the...
EUVD-2023-60249
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an unauthenticated vulnerability in the /usr/cgi-bin/restorefactory.cgi endpoint that allows remote attackers to reset device configuration. Attackers can send a POST request to the endpoint with specific data to trigger a factory reset and bypass...
CVE-2023-53964
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an unauthenticated vulnerability in the /usr/cgi-bin/restorefactory.cgi endpoint that allows remote attackers to reset device configuration. Attackers can send a POST request to the endpoint with specific data to trigger a factory reset and bypass...
CVE-2023-53964
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an unauthenticated vulnerability in the /usr/cgi-bin/restorefactory.cgi endpoint that allows remote attackers to reset device configuration. Attackers can send a POST request to the endpoint with specific data to trigger a factory reset and bypass...
CVE-2023-53964 SOUND4 IMPACT/FIRST/PULSE/Eco v2.x Unauthenticated Factory Reset Vulnerability
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an unauthenticated vulnerability in the /usr/cgi-bin/restorefactory.cgi endpoint that allows remote attackers to reset device configuration. Attackers can send a POST request to the endpoint with specific data to trigger a factory reset and bypass...
CVE-2023-53964 SOUND4 IMPACT/FIRST/PULSE/Eco v2.x Unauthenticated Factory Reset Vulnerability
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an unauthenticated vulnerability in the /usr/cgi-bin/restorefactory.cgi endpoint that allows remote attackers to reset device configuration. Attackers can send a POST request to the endpoint with specific data to trigger a factory reset and bypass...
CVE-2023-53964
The CVE-2023-53964 entry concerns SOUND4 IMPACT/FIRST/PULSE/Eco v2.x. The vulnerability is an unauthenticated factory-reset flaw in the /usr/cgi-bin/restorefactory.cgi endpoint that allows remote attackers to trigger a device factory reset by sending a crafted POST request, bypassing authenticati...
PT-2025-52701
Name of the Vulnerable Software and Affected Versions SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x Description The software contains an unauthenticated issue in the /usr/cgi-bin/restorefactory.cgi endpoint. Remote attackers can send a POST request to this endpoint with specific data to trigger a...
CVE-2025-65007
In WODESYS WD-R608U router also known as WDR122B V2.0 and WDR28 due to lack of authentication in the configuration change module in the adm.cgi endpoint, the unauthenticated attacker can execute commands including backup creation, device restart and resetting the device to factory settings. The...
CVE-2025-65007
In WODESYS WD-R608U router also known as WDR122B V2.0 and WDR28 due to lack of authentication in the configuration change module in the adm.cgi endpoint, the unauthenticated attacker can execute commands including backup creation, device restart and resetting the device to factory settings. The...
CVE-2025-65007 Missing Authentication for Critical Function in WODESYS WD-R608U router
In WODESYS WD-R608U router also known as WDR122B V2.0 and WDR28 due to lack of authentication in the configuration change module in the adm.cgi endpoint, the unauthenticated attacker can execute commands including backup creation, device restart and resetting the device to factory settings. The...