42 matches found
EUVD-2000-0951
Malware in sbrugna...
EUVD-2019-4905
Malware in sbrugna...
EUVD-2019-6147
Malware in sbrugna...
EUVD-2019-6145
Malware in sbrugna...
EUVD-2019-6146
Malware in sbrugna...
EUVD-2019-4906
Malware in sbrugna...
114-34-232-82.hinet-ip.hinet.net Cross Site Scripting vulnerability OBB-3506103
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Chunghwa Telecom HiNet GPON Command Execution Vulnerability
Chunghwa Telecom HiNet GPON is an optical modem from Chunghwa Telecom in Taiwan, China. A security vulnerability exists in the Chunghwa Telecom HiNet GPON using firmware prior to I040GWR190731. The vulnerability can be exploited by an attacker to execute arbitrary commands on port 6998...
Chunghwa Telecom HiNet GPON Access Control Flaw Vulnerability
Chunghwa Telecom HiNet GPON is an optical modem from Chunghwa Telecom in Taiwan, China. A security vulnerability exists in the Chunghwa Telecom HiNet GPON using firmware versions prior to I040GWR190731. The vulnerability can be exploited by an attacker to log in to the device without authenticati...
Chunghwa Telecom HiNet GPON Arbitrary File Read Vulnerability
Chunghwa Telecom HiNet GPON is an optical modem from Chunghwa Telecom in Taiwan, China. A security vulnerability exists in the Chunghwa Telecom HiNet GPON using firmware prior to I040GWR190731. The vulnerability can be exploited by an attacker to execute commands via services hosted on port 6998 ...
CVE-2019-13412
A service which is hosted on port 3097 in HiNet GPON firmware I040GWR190731 allows an attacker to execute a specific command to read arbitrary files. CVSS 3.0 Base score 9.3. CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L...
CVE-2019-15064
HiNet GPON firmware version I040GWR190731 allows an attacker login to device without any authentication...
CVE-2019-15064
HiNet GPON firmware version I040GWR190731 allows an attacker login to device without any authentication...
CVE-2019-15065
A service which is hosted on port 6998 in HiNet GPON firmware I040GWR190731 allows an attacker to execute a specific command to read arbitrary files. CVSS 3.0 Base score 9.3. CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L...
CVE-2019-15065
A service which is hosted on port 6998 in HiNet GPON firmware I040GWR190731 allows an attacker to execute a specific command to read arbitrary files. CVSS 3.0 Base score 9.3. CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L...
CVE-2019-15066
An “invalid command” handler issue was discovered in HiNet GPON firmware I040GWR190731. It allows an attacker to execute arbitrary command through port 6998. CVSS 3.0 Base score 10.0. CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H...
CVE-2019-13412
A service which is hosted on port 3097 in HiNet GPON firmware I040GWR190731 allows an attacker to execute a specific command to read arbitrary files. CVSS 3.0 Base score 9.3. CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L...
CVE-2019-15066
An “invalid command” handler issue was discovered in HiNet GPON firmware I040GWR190731. It allows an attacker to execute arbitrary command through port 6998. CVSS 3.0 Base score 10.0. CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H...
Command injection
An “invalid command” handler issue was discovered in HiNet GPON firmware I040GWR190731. It allows an attacker to execute arbitrary command through port 6998. CVSS 3.0 Base score 10.0. CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H...
Authentication flaw
HiNet GPON firmware version I040GWR190731 allows an attacker login to device without any authentication...