CVE-2024-45696

Certain models of D-Link wireless routers contain hidden functionality. By sending specific packets to the web service, the attacker can forcibly enable the telnet service and log in using hard-coded credentials. The telnet service enabled through this method can only be accessed from within the...

CVE-2024-45698

Certain models of D-Link wireless routers do not properly validate user input in the telnet service, allowing unauthenticated remote attackers to use hard-coded credentials to log into telnet and inject arbitrary OS commands, which can then be executed on the device...

CVE-2024-45697

Certain models of D-Link wireless routers have a hidden functionality where the telnet service is enabled when the WAN port is plugged in. Unauthorized remote attackers can log in and execute OS commands using hard-coded credentials...

CVE-2024-45698 D-Link WiFi router - OS Command Injection

Certain models of D-Link wireless routers do not properly validate user input in the telnet service, allowing unauthenticated remote attackers to use hard-coded credentials to log into telnet and inject arbitrary OS commands, which can then be executed on the device...

CVE-2024-45698 D-Link WiFi router - OS Command Injection

Certain models of D-Link wireless routers do not properly validate user input in the telnet service, allowing unauthenticated remote attackers to use hard-coded credentials to log into telnet and inject arbitrary OS commands, which can then be executed on the device...

CVE-2024-45697 D-Link WiFi router - Hidden Functionality

Certain models of D-Link wireless routers have a hidden functionality where the telnet service is enabled when the WAN port is plugged in. Unauthorized remote attackers can log in and execute OS commands using hard-coded credentials...

CVE-2024-45697

CVE-2024-45697 affects certain D-Link wireless routers (DIR-X4860, DIR-X5460, COVR-X1870). The issue is a hidden/telnet functionality where telnet is enabled when the WAN port is plugged in, allowing an unauthenticated remote attacker to log in and execute OS commands using hard-coded credentials...

CVE-2024-45697 D-Link WiFi router - Hidden Functionality

Certain models of D-Link wireless routers have a hidden functionality where the telnet service is enabled when the WAN port is plugged in. Unauthorized remote attackers can log in and execute OS commands using hard-coded credentials...

CVE-2024-45696

CVE-2024-45696 affects certain D‑Link wireless routers. According to the sources, a hidden functionality can be triggered by sending crafted packets to the device’s web service, forcibly enabling the telnet service and allowing login with hard‑coded credentials. The telnet access is restricted to...

CVE-2024-45696 D-Link WiFi router - Hidden Functionality

Certain models of D-Link wireless routers contain hidden functionality. By sending specific packets to the web service, the attacker can forcibly enable the telnet service and log in using hard-coded credentials. The telnet service enabled through this method can only be accessed from within the...

CVE-2024-45696 D-Link WiFi router - Hidden Functionality

Certain models of D-Link wireless routers contain hidden functionality. By sending specific packets to the web service, the attacker can forcibly enable the telnet service and log in using hard-coded credentials. The telnet service enabled through this method can only be accessed from within the...

D-Link DIR-X4860 安全漏洞

The DIR-X4860 is a wireless router from China's AUO D-Link. A security vulnerability exists in the DIR-X4860 of AUO Electronic Devices Shanghai Co. An unauthorized remote attacker could exploit the vulnerability and be able to log in and execute operating system commands using hard-coded...

D-Link DIR-X4860 安全漏洞

The D-Link DIR-X4860 is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-X4860 that stems from the use of hard-coded credentials, which allows an attacker to force the telnet service to be enabled and log in using hard-coded credentials...

CVE-2024-6656

Use of Hard-coded Credentials vulnerability in TNB Mobile Solutions Cockpit Software allows Read Sensitive Strings Within an Executable.This issue affects Cockpit Software: before v2.13...

CVE-2024-6656

Use of Hard-coded Credentials vulnerability in TNB Mobile Solutions Cockpit Software allows Read Sensitive Strings Within an Executable. This issue affects Cockpit Software: before v2.13...

CVE-2024-6656

Use of Hard-coded Credentials vulnerability in TNB Mobile Solutions Cockpit Software allows Read Sensitive Strings Within an Executable. This issue affects Cockpit Software: before v2.13...

CVE-2024-6656

The CVE-2024-6656 issue affects TNB Mobile Solutions Cockpit Software prior to v2.13, where hard-coded credentials enable reading sensitive strings within an executable. Public descriptions (NVD/Red Hat/CNNVD) align on the flaw and affected version range; CVSS metrics indicate high/critical impac...

TNB Mobile Solutions Cockpit 安全漏洞

TNB Mobile Solutions Cockpit is a mobile solution management platform from TNB Mobile Solutions. A security vulnerability exists in TNB Mobile Solutions Cockpit versions prior to v2.13 that stems from the presence of a hard-coded credentials issue...

SolarWinds Access Rights Manager Hard-Coded Credentials Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of SolarWinds Access Rights Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of a RabbitMQ instance. The issue results from the use...

mySCADA myPRO Hard-Coded Credentials Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of mySCADA myPRO. Authentication is not required to exploit this vulnerability. The specific flaw exists within the telnet service, which listens on TCP port 5005 by default. The issue results from the...