7 matches found
EUVD-2024-27367
Malicious code in bioql PyPI...
PT-2024-20303 · Telefonica · Movistar 4G Router
Name of the Vulnerable Software and Affected Versions: Movistar 4G router version ES WLD71-T1 v2.0.201820 Description: The issue is a Cross-Site Request Forgery vulnerability that allows an attacker to force an end user to execute unwanted actions in a web application where they are currently...
Movistar 4G router cross-site request forgery vulnerability
Movistar 4G router is a series of routers from Movistar Spain. A cross-site request forgery vulnerability exists in the Movistar 4G router ESWLD71-T1v2.0.201820 firmware version, which originates from a vulnerability that allows an attacker to force a user to perform additional actions in a web...
Movistar 4G router security vulnerability
Movistar 4G router is a series of routers from Movistar Spain. A security vulnerability exists in the Movistar 4G router ESWLD71-T1v2.0.201820 firmware version, which originates from an unprotected master channel on the router, which opens the adb service on port 5555 and provides shell access wi...
PT-2024-20291 · Telefonica · Movistar 4G Router
Name of the Vulnerable Software and Affected Versions: Movistar 4G router version S WLD71-T1 v2.0.201820 Description: The issue concerns an unprotected primary channel on the Movistar 4G router, which has the 'adb' service open on port 5555. This provides access to a shell with root privileges,...
Movistar 4G router OS Command Injection Vulnerability
Movistar 4G router is a series of routers from Movistar Spain. The Movistar 4G router ESWLD71-T1v2.0.201820 firmware version has an operating system command injection vulnerability that originates from allowing authenticated users to execute commands within the router by sending a POST request to...
PT-2024-20298 · Telefonica · Movistar 4G Router
Name of the Vulnerable Software and Affected Versions: Movistar 4G router version ES WLD71-T1 v2.0.201820 Description: The issue is a command injection vulnerability that allows an authenticated user to execute commands inside the router. This can be achieved by making a POST request to the API...