Lucene search
+L

34 matches found

RedhatCVE
RedhatCVE
added 2025/10/23 12:17 a.m.10 views

CVE-2025-62772

On Mercku M6a devices through 2.1.0, session tokens remain valid for at least months in some cases...

3.1CVSS6.9AI score0.00145EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/23 12:17 a.m.11 views

CVE-2025-62773

Mercku M6a devices through 2.1.0 allow TELNET sessions via a router.telnet.enabled.update request by an administrator...

2.4CVSS6.9AI score0.00158EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/23 12:17 a.m.8 views

CVE-2025-62771

Mercku M6a devices through 2.1.0 allow password changes via intranet CSRF attacks...

7.5CVSS7.1AI score0.00137EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/23 12:17 a.m.11 views

CVE-2025-62775

Mercku M6a devices through 2.1.0 allow root TELNET logins via the web admin password...

8CVSS7AI score0.00255EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 4:16 a.m.8 views

CVE-2025-62775

Mercku M6a devices through 2.1.0 allow root TELNET logins via the web admin password...

8CVSS0.00255EPSS
Exploits0References2
NVD
NVD
added 2025/10/22 4:16 a.m.13 views

CVE-2025-62774

On Mercku M6a devices through 2.1.0, the authentication system uses predictable session tokens based on timestamps...

3.1CVSS0.00178EPSS
Exploits0References2
NVD
NVD
added 2025/10/22 4:16 a.m.4 views

CVE-2025-62773

Mercku M6a devices through 2.1.0 allow TELNET sessions via a router.telnet.enabled.update request by an administrator...

2.4CVSS0.00158EPSS
Exploits0References2
NVD
NVD
added 2025/10/22 4:16 a.m.14 views

CVE-2025-62772

On Mercku M6a devices through 2.1.0, session tokens remain valid for at least months in some cases...

3.1CVSS0.00145EPSS
Exploits0References2
NVD
NVD
added 2025/10/22 4:16 a.m.11 views

CVE-2025-62771

Mercku M6a devices through 2.1.0 allow password changes via intranet CSRF attacks...

7.5CVSS0.00137EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/22 12:0 a.m.4 views

CVE-2025-62774

On Mercku M6a devices through 2.1.0, the authentication system uses predictable session tokens based on timestamps...

3.1CVSS6.8AI score0.00178EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/22 12:0 a.m.5 views

EUVD-2025-35316

Mercku M6a devices through 2.1.0 allow password changes via intranet CSRF attacks...

7.5CVSS6.6AI score0.00137EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/22 12:0 a.m.5 views

EUVD-2025-35315

On Mercku M6a devices through 2.1.0, session tokens remain valid for at least months in some cases...

3.1CVSS6.4AI score0.00145EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/10/22 12:0 a.m.2 views

CVE-2025-62771

Mercku M6a devices through 2.1.0 allow password changes via intranet CSRF attacks...

7.5CVSS6.7AI score0.00137EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/22 12:0 a.m.5 views

EUVD-2025-35313

On Mercku M6a devices through 2.1.0, the authentication system uses predictable session tokens based on timestamps...

3.1CVSS6.6AI score0.00178EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/10/22 12:0 a.m.10 views

CVE-2025-62773

Mercku M6a devices through 2.1.0 allow TELNET sessions via a router.telnet.enabled.update request by an administrator...

2.4CVSS0.00158EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/22 12:0 a.m.12 views

CVE-2025-62771

Mercku M6a devices through 2.1.0 allow password changes via intranet CSRF attacks...

7.5CVSS0.00137EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/22 12:0 a.m.11 views

CVE-2025-62772

On Mercku M6a devices through 2.1.0, session tokens remain valid for at least months in some cases...

3.1CVSS0.00145EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/22 12:0 a.m.2 views

CVE-2025-62775

Mercku M6a devices through 2.1.0 allow root TELNET logins via the web admin password...

8CVSS6.7AI score0.00255EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.3 views

Mercku M6a 安全特征问题漏洞

Mercku M6a is a WiFi router from Mercku USA. A security feature issue vulnerability exists in Mercku M6a version 2.1.0 and earlier, which stems from the authentication system's use of predictable session tokens based on timestamps, which could lead to authentication bypass...

3.1CVSS6.8AI score0.00178EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.5 views

Mercku M6a 安全漏洞

Mercku M6a is a WiFi router from Mercku USA. A security vulnerability exists in Mercku M6a version 2.1.0 and prior versions, which originates from allowing root login via TELNET using the web administrator password, which could lead to unauthorized access...

8CVSS6.7AI score0.00255EPSS
Exploits0References3
Rows per page
Query Builder