CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2023/07/18 6:15 p.m.•12 views

Authentication flaw

7.5CVSS9.3AI score0.00288EPSS

Exploits0References2Affected Software1

CVE•added 2023/07/18 12:0 a.m.•34 views

CVE-2023-36669

CVE-2023-36669 (Kratos NGC IDU) affects Kratos NGC Indoor Unit prior to 11.4, where missing authentication for a critical function allows remote attackers with layer-3 network access to impersonate the Touch Panel Unit (TPU) by sending crafted TCP requests, granting arbitrary control of the IDU/O...

9.8CVSS9.3AI score0.00288EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2023/07/18 12:0 a.m.•1 views

PT-2023-25670 · Kratos · Kratos Ngc Indoor Unit

Name of the Vulnerable Software and Affected Versions: Kratos NGC Indoor Unit IDU versions prior to 11.4 Description: The issue allows remote attackers to obtain arbitrary control of the IDU/ODU system due to missing authentication for a critical function. Attackers with layer-3 network access to...

9.8CVSS9.6AI score0.00288EPSS

Exploits0References4

Cvelist•added 2023/07/18 12:0 a.m.•11 views

CVE-2023-36669

9.6AI score0.00288EPSS

Vulnrichment•added 2023/07/18 12:0 a.m.•12 views

CVE-2023-36669

7.2AI score0.00288EPSS

CNNVD•added 2023/07/18 12:0 a.m.•2 views

Kratos NGC Indoor Unit 操作系统命令注入漏洞

Kratos Defense The Kratos NGC Indoor Unit is an advanced antenna control system from Kratos Defense. A security vulnerability in the Kratos NGC Indoor Unit IDU version 9.1.0.4 can be exploited by an attacker to execute arbitrary Linux commands as root by sending a crafted TCP request to the devic...

9.8CVSS8.8AI score0.00298EPSS

Exploits0References3

CNNVD•added 2023/07/18 12:0 a.m.•1 views

Kratos NGC Indoor Unit 访问控制错误漏洞

Kratos Defense The Kratos NGC Indoor Unit is an advanced antenna control system from Kratos Defense. A security vulnerability exists in the Kratos NGC Indoor Unit IDU prior to version 11.4, which stems from a lack of authentication for critical functions, allowing a remote attacker to gain...

9.8CVSS8.7AI score0.00288EPSS

Exploits0References3

OSV•added 2023/04/04 1:15 p.m.•0 views

CVE-2023-26866

GreenPacket OH736's WR-1200 Indoor Unit, OT-235 with firmware versions M-IDU-1.6.0.3V1.1 and MH-46360-2.0.3-R5-GP respectively are vulnerable to remote command injection. Commands are executed using pre-login execution and executed with root privileges allowing complete takeover...

9.8CVSS7.4AI score0.09265EPSS

Exploits0References1

CNNVD•added 2023/04/04 12:0 a.m.•1 views

Green Packet OH736 命令注入漏洞

The Green Packet OH736 is a router from Green Packet USA. A security vulnerability exists in the WR-1200 Indoor Unit, OT-235 M-IDU-1.6.0.3V1.1 version, and MH-46360-2.0.3-R5-GP version of the Green Packet OH736. By exploiting this vulnerability, an attacker can completely take over root privilege...

9.8CVSS8.4AI score0.09265EPSS

OSV•added 2022/07/14 1:15 p.m.•1 views

CVE-2022-28377

On Verizon 5G Home LVSKIHP InDoorUnit IDU 3.4.66.162 and OutDoorUnit ODU 3.33.101.0 devices, the CRTC and ODU RPC endpoints rely on a static account username/password for access control. This password can be generated via a binary included in the firmware, after ascertaining the MAC address of th...

7.5CVSS5.8AI score

OSV•added 2022/07/14 1:15 p.m.•0 views

CVE-2022-28369

Verizon 5G Home LVSKIHP InDoorUnit IDU 3.4.66.162 does not validate the user-provided URL within the crtcmode function's enablessh sub-operation of the crtcrpc JSON listener found at /lib/functions/wncjsonsh/crtcmode.sh A remote attacker on the local network can provide a malicious URL. The data...

9.8CVSS5.8AI score

7.5CVSS6AI score0.00249EPSS

CVE-2022-28372

On Verizon 5G Home LVSKIHP InDoorUnit IDU 3.4.66.162 and OutDoorUnit ODU 3.33.101.0 devices, the CRTC and ODU RPC endpoints provide a means of provisioning a firmware update for the device via crtcfwupgrade or crtcfwimage. The URL provided is not validated, and thus allows for arbitrary file uplo...

7.5CVSS5.9AI score0.00286EPSS

CVE-2022-28377

OSV•added 2022/07/14 1:15 p.m.•0 views

CVE-2022-28372

7.5CVSS5.9AI score0.00249EPSS

Exploits1References2

OSV•added 2022/07/14 1:15 p.m.•1 views

CVE-2022-28371

On Verizon 5G Home LVSKIHP InDoorUnit IDU 3.4.66.162 and OutDoorUnit ODU 3.33.101.0 devices, the CRTC and ODU RPC endpoints rely on a static certificate for access control. This certificate is embedded in the firmware, and is identical across the fleet of devices. An attacker need only download...

7.5CVSS5.8AI score

7.5CVSS5.9AI score0.00208EPSS

CVE-2022-28371

9.8CVSS5.9AI score0.01076EPSS

CVE-2022-28369

OSV•added 2022/07/14 1:15 p.m.•1 views

CVE-2022-28373

Verizon 5G Home LVSKIHP InDoorUnit IDU 3.4.66.162 does not properly sanitize user-controlled parameters within the crtcreadpartition function of the crtcrpc JSON listener in /usr/lib/lua/luci/crtc.lua. A remote attacker on the local network can inject shell metacharacters to achieve remote code...

9.8CVSS6.4AI score0.04386EPSS

Exploits1References2

CNNVD•added 2022/07/14 12:0 a.m.•1 views

Verizon 5G Home LVSKIHP 代码问题漏洞

The Verizon 5G Home LVSKIHP is an all-in-one integrated modem and router from Verizon USA. It provides access to Verizon Wireless 5G wireless home Internet service. A security vulnerability exists in the Verizon 5G Home LVSKIHP InDoorUnit IDU version 3.4.66.162 and OutDoorUnit ODU version...

7.5CVSS7.4AI score0.00249EPSS