8 matches found
The vulnerability of microprogrammed software in PLANET Technology switches arises from the failure to take measures to neutralize special elements, allowing attackers to execute arbitrary code.
The vulnerability of PLANET Technology’s microprogrammed software exists due to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created malicious HTTP request...
PT-2024-10297 · Planet Technology · Planet Switches
Name of the Vulnerable Software and Affected Versions: Planet Switches affected versions not specified Description: The issue exists due to the lack of measures to neutralize special elements in the firmware of PLANET Technology switches. An unauthenticated attacker could send commands through a...
CVE-2024-8449
Certain switch models from PLANET Technology have a Hard-coded Credential in the password recovering functionality, allowing an unauthenticated attacker to connect to the device via the serial console and use this credential to reset any user's password...
PLANET switch devices 安全漏洞
PLANET switch devices are a series of switch devices from PLANET China. A security vulnerability exists in PLANET switch devices that stems from the fact that the SNMPv3 service only supports outdated authentication protocols and encryption protocols, allowing an attacker to potentially obtain...
PLANET switch devices 信任管理问题漏洞
PLANET switch devices are a series of switch devices from PLANET Corporation in China. A trust management issue vulnerability exists in PLANET switch devices, which originates from a hard-coded group string in the SNMPv1 service, allowing unauthorized remote attackers to use this group string to...
PLANET switch devices 跨站脚本漏洞
PLANET switch devices are a series of switch devices from the Chinese company PLANET. A cross-site scripting vulnerability exists in PLANET switch devices, which stems from improper validation of web application parameters and is susceptible to stored cross-site scripting attacks...
PLANET switch devices 访问控制错误漏洞
PLANET switch devices are a series of switch devices from PLANET Corporation in China. An access control error vulnerability exists in PLANET switch devices, which stems from a lack of proper access control for the firmware upload and download functions, allowing an unauthenticated, remote attack...
Planet switches - 2 серия
Добрый день. Если помните, http://www.security.nnov.ru/search/news.asp?binid=3174 Та же "закладка" присутствует в Planet WSW-2401. Тот же пользователь, тот же пароль. Проблема усугубляется тем, что управляющий IP-интерфейс доступен через ЛЮБОЙ 802.1q-VLAN, присутствующий в свитче. Это касается и...