CVE-2023-1618

Active Debug Code vulnerability in Mitsubishi Electric Corporation MELSEC WS Series WS0-GETH00200 Serial number 2310 and prior allows a remote unauthenticated attacker to bypass authentication and illegally log into the affected module by connecting to it via telnet which is hidden function and i...

CVE-2023-1618

The vulnerability CVE-2023-1618 affects Mitsubishi Electric MELSEC WS Series WS0-GETH00200 Ethernet interface modules (serial numbers 2310 and prior). The issue is an authentication bypass via a hidden telnet function that is enabled by default at factory, allowing remote unauthenticated access t...

Code injection

A vulnerability in the update mechanism of Subaru StarLink Harman head units 2017, 2018, and 2019 may give an attacker with physical access to the vehicle's USB ports the ability to rewrite the firmware of the head unit. This occurs because the device accepts modified QNX6 filesystem images as lo...

BSNL Teracom Router Firmware Rewrite / Link Modification

Multiple Vulnerabilities in TERACOM ROUTER Author: Ajay Gowtham aka AJOXR Contact: gowtham.ajay5 at gmail.com Vulnerability Type: Insecure Upload File Permissions Affected Module: Upload Functionality Criticality: Medium Device Model: BSNL Teracom T2-B-Gawv1.4U10Y-BI is WiFi enabled ADSL2+...

Moxa UC-7408 Firmware Rewrite Vulnerability

Moxa UC-7408 is an embedded industrial computer product from Moxa. A firmware rewrite vulnerability exists in the Moxa UC-7408 that originates from a program failing to perform authentication of critical functions. A remote attacker can exploit this vulnerability to cause an unrecoverable firmwar...