4 matches found
EUVD-2026-27337
The traceroute diagnostic handler in /bin/httpdclientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system call, allowing authenticated remote attackers to execute arbitrary commands as root via crafted destAddr parameters usi...
CVE-2026-31195
OS command injection vulnerability in the ping diagnostic handler in /bin/httpdclientside in ALTICE LABS / SFR France GR140DG Fibre Router with firmware 3GN8020801R13, 3GN8020802R0A, or 3GN8020803R0A inserts unsanitized user input into a system call, allowing authenticated remote attackers to...
GSD-2022-1000071 Default Credentials in XB6 Fibre+ Gateway version XB6_0821
In Shaw Communications Inc XB6 Fibre+ Gateway version XB60821 a Default Credentials exists in the Router/Modem that can be attacked via local access resulting in Admin access to router...
CAN-2022-1000071 Default Credentials in XB6 Fibre+ Gateway version XB6_0821
In Shaw Communications Inc XB6 Fibre+ Gateway version XB60821 a Default Credentials exists in the Router/Modem that can be attacked via local access resulting in Admin access to router...