Lucene search
K

14 matches found

Exploit DB
Exploit DB
added 2024/08/24 12:0 a.m.169 views

Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass

Elber Wayber Analog/Digital Audio STL 4.00 Authentication Bypass Vendor: Elber S.r.l. Product web page: https://www.elber.it Affected version: Version 3.0.0 Revision 1553 Firmware Ver. 4.00 Rev. 1501 Version 3.0.0 Revision 1542 Firmware Ver. 4.00 Rev. 1516 Version 3.0.0 Revision 1530 Firmware Ver...

7.4AI score
Exploits0
Prion
Prion
added 2023/10/03 1:15 a.m.19 views

Cross site scripting

Cross-site scripting vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to inject an arbitrary script via a crafted configuration. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i firmware ver.01.35 a...

4.9CVSS5.3AI score0.00303EPSS
Exploits0References2Affected Software12
Prion
Prion
added 2023/05/10 6:15 a.m.21 views

Default credentials

Use of weak credentials exists in SkyBridge MB-A100/110 firmware Ver. 4.2.0 and earlier, which may allow a remote unauthenticated attacker to decrypt password for the WebUI of the product...

5CVSS8.1AI score0.00831EPSS
Exploits0References6Affected Software2
NVD
NVD
added 2020/03/25 9:15 p.m.22 views

CVE-2020-10886

This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the tmpServer service, which listens on TCP port...

9.8CVSS8.8AI score0.055EPSS
Exploits0References1
NVD
NVD
added 2020/03/25 9:15 p.m.20 views

CVE-2020-10883

This vulnerability allows local attackers to escalate privileges on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific...

7.8CVSS6.1AI score0.05898EPSS
Exploits4References2
Prion
Prion
added 2020/03/25 9:15 p.m.28 views

Hardcoded credentials

This vulnerability allows network-adjacent attackers execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the tdpServer service, which listens on UDP...

5.8CVSS8.8AI score0.24495EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2020/03/25 7:15 p.m.18 views

CVE-2020-10885

This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of DNS responses. The issue results...

8.1CVSS9.6AI score0.07219EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/03/25 7:15 p.m.22 views

CVE-2020-10884

This vulnerability allows network-adjacent attackers execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the tdpServer service, which listens on UDP...

8.1CVSS8.7AI score0.24495EPSS
Exploits4References2
CVE
CVE
added 2020/03/25 7:15 p.m.142 views

CVE-2020-10884

This CVE concerns TP-Link Archer A7 AC1750 routers running firmware 190726. Affected component is the tdpServer daemon, which listens on UDP port 20002; the issue stems from a hard-coded encryption key, enabling network-adjacent attackers to execute arbitrary code with root privileges in vulnerab...

8.8CVSS8.8AI score0.24495EPSS
Exploits4References2Affected Software1
CVE
CVE
added 2020/03/25 7:15 p.m.159 views

CVE-2020-10883

CVE-2020-10883 affects TP-Link Archer A7/AC1750 firmware 190726, via a file-system permissions flaw that allows a local attacker to escalate privileges on the router. The vulnerability is demonstrated in public materials (e.g., Metasploit/Exploit-DB modules and ZDI advisory) describing local/LAN ...

7.8CVSS7.9AI score0.05898EPSS
Exploits4References2Affected Software1
Packet Storm
Packet Storm
added 2018/08/23 12:0 a.m.46 views

PLANEX CS-QR20 Command Execution

Reserved CVE: CVE-2017-12576 Description A hidden and undocumented management page allows an attacker to execute arbitrary code on the device when the user is authenticated. Vulnerability Type Insecure Permissions Affected Product Code Base Firmware ver 1.30 Affected Component Web management UI...

7.1AI score0.02198EPSS
Exploits1
Prion
Prion
added 2017/04/28 4:59 p.m.17 views

Buffer overflow

Buffer overflow in WN-G300R3 firmware Ver.1.03 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors...

10CVSS9.8AI score0.03076EPSS
Exploits0References2Affected Software1
Exploit DB
Exploit DB
added 2014/12/02 12:0 a.m.53 views

Prolink PRN2001 - Multiple Vulnerabilities

Exploit Title: Prolink PRN2001 Multiple Vulnerabilities 1. -Advisory Information- Title: Prolink PRN2001 Multiple Vulnerabilities Firmware: Ver 1.2 Firmware URL: http://www.prolink2u.com/download/fw/fwPRN2001V1.220130323.zip Vendor Homepage: http://www.prolink2u.com/ Author: Herman Groeneveld aka...

7.4AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2006/10/02 12:0 a.m.15 views

JVN#93484133 TeraStation HD-HTGL series cross-site request forgery vulnerability

Impact If a TeraStation HD-HTGL administrator who logged into the web administration interface views a malicous website, an attacker could possibly modify configurations or delete data on the hard disk. Solution Products Affected HD-HTGL Series firmware Ver. 2.05-beta-1 and earlier...

7.3AI score
Exploits0
Rows per page
Query Builder