Design/Logic Flaw

Certain NetModule devices allow credentials via GET parameters to CLI-PHP. These models with firmware before 4.3.0.113, 4.4.0.111, and 4.5.0.105 are affected: NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710, NB3711, NB3720, and NB3800...

CVE-2021-39291

Certain NetModule devices allow credentials via GET parameters to CLI-PHP. These models with firmware before 4.3.0.113, 4.4.0.111, and 4.5.0.105 are affected: NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710, NB3711, NB3720, and NB3800...

CVE-2021-39291

CVE-2021-39291 affects NetModule Router Software (NRSW) across multiple NB series devices. Vulnerability: credentials can be exposed via GET parameters to the CLI-PHP interface, on NetModule NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710, NB3711, NB3...

CVE-2021-39290

CVE-2021-39290 affects NetModule Router Software (NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710, NB3711, NB3720, NB3800) with firmware older than 4.3.0.113 (NB800) or older than 4.4.0.111 (NB1600/1601/1800/1810) or older than 4.5.0.105 (NB2700/2710/...

CVE-2021-39290

Certain NetModule devices allow Limited Session Fixation via PHPSESSID. These models with firmware before 4.3.0.113, 4.4.0.111, and 4.5.0.105 are affected: NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710, NB3711, NB3720, and NB3800...

CVE-2021-39289

Certain NetModule devices have Insecure Password Handling cleartext or reversible encryption, These models with firmware before 4.3.0.113, 4.4.0.111, and 4.5.0.105 are affected: NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710, NB3711, NB3720, and NB38...

CVE-2021-39289

CVE-2021-39289 affects NetModule Router Software (NRSW) and various NetModule NB devices where passwords are stored in cleartext or with reversible encryption. Affected devices include NB800, NB1600, NB1601, NB1800, NB1810, NB2700, NB2710, NB2800, NB2810, NB3700, NB3701, NB3710, NB3711, NB3720, a...

PT-2021-22510 · Netmodule · Nb1800 +14

Name of the Vulnerable Software and Affected Versions: NetModule NB800 versions prior to 4.3.0.113 NetModule NB1600 versions prior to 4.4.0.111 NetModule NB1601 versions prior to 4.4.0.111 NetModule NB1800 versions prior to 4.4.0.111 NetModule NB1810 versions prior to 4.4.0.111 NetModule NB2700...

PT-2021-22507 · Netmodule · Netmodule Nb1600 +14

Name of the Vulnerable Software and Affected Versions: NetModule NB800 versions prior to 4.3.0.113 NetModule NB1600 versions prior to 4.3.0.113 NetModule NB1601 versions prior to 4.3.0.113 NetModule NB1800 versions prior to 4.3.0.113 NetModule NB1810 versions prior to 4.3.0.113 NetModule NB2700...

PT-2021-22509 · Netmodule · Netmodule Nb1600 +14

Name of the Vulnerable Software and Affected Versions: NetModule NB800 versions prior to 4.3.0.113 NetModule NB1600 versions prior to 4.4.0.111 NetModule NB1601 versions prior to 4.4.0.111 NetModule NB1800 versions prior to 4.4.0.111 NetModule NB1810 versions prior to 4.4.0.111 NetModule NB2700...

NetModule Router Software Password Handling / Session Fixation Vulnerability

NetModule Router Software versions prior to 4.3.0.113, 4.4.0.111, and 4.5.0.105 suffer from insecure password handling and session fixation vulnerabilities. ======================================================================= title: Multiple Vulnerabilities in NetModule Router Software product...

NetModule Router Software 安全漏洞

NetModule Router Software is a router from NetModule. A security vulnerability exists in NetModule Router Software versions prior to 4.3.0.113, 4.4.0.111, and 4.5.0.105. No further information on this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's announcement...

NetModule Router Software Password Handling / Session Fixation

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Vulnerabilities in NetModule Router Software product: NetModule Router Software NRSW vulnerable version: Before 4.3.0.113, 4.4.0.111, 4.5.0.105 fixed version:...

NetModule Router Software 日志信息泄露漏洞

NetModule Router Software is a router for NetModule. A security vulnerability exists in NetModule Router Software due to the interface support for an optional "CLI-PHP" feature, which is essentially a PHP webshell that requires The vulnerability stems from the interface supporting an optional...

NetModule Router Software 授权问题漏洞

NetModule Router Software is a router from NetModule. A security vulnerability exists in NetModule Router Software that originates from the use of an arbitrary session token cookie value on the web interface, where if a session token with an arbitrary value is available, the device will not creat...