EUVD-2019-13523

Malware in sbrugna...

CVE-2024-24919: Check Point’s Quantum Gateway comes under Attack as Hackers exploit Zero-Day Vulnerability

Active Exploits target Check Point Security Gateway Zero-Day Information Disclosure flaw Check Point Cybersecurity has issued hotfixes to address a zero-day vulnerability in its VPNs that has been exploited to gain remote access to firewalls and potentially infiltrate corporate networks. On...

Check Point Quantum Gateway Directory Traversal

Check Point Quantum Gateway has a vulnerability that allows an unauthenticated attacker to access sensitive information by sending a specifically forged request. No source data...

Vulnerability fixed in Check Point VPN products

Check Point has fixed a vulnerability in Quantum Gateway VPN systems. Check Point reports observing active abuse attempts. A path-traversal bug allows a malicious party to gain access to the username and password credentials of local accounts on the VPN system. If these local accounts, are...

Preventative Hotfix for CVE-2024-24919 - Quantum Gateway Information Disclosure

Solution This article refers to Quantum Security Gateways running Gaia OS and CloudGuard Network Security. For Quantum Spark Gateways that run a Gaia Embedded OS, see sk182357. Following our security update on May 27, 2024, Check Point's dedicated task force continues investigating attempts to ga...

Verizon Fios Quantum Gateway Authenticated Command Injection (CVE-2019-3914)

A command injection vulnerability exists in Verizon Fios Quantum Gateway G1100 firmware. Successful exploitation of this vulnerability could result in the execution of arbitrary commands with root privileges...

Verizon Wireless Fios Quantum Gateway (G1100) Authorization Issues Vulnerability

The Verizon Wireless Fios Quantum Gateway G1100 is a wireless router from Verizon Wireless. An authorization issue vulnerability exists in the Verizon Fios Quantum Gateway G1100 using firmware version 02.01.00.05, which arises from a lack of or insufficiently strong authentication measures in a...

CVE-2019-3914

Remote command injection vulnerability in Verizon Fios Quantum Gateway G1100 firmware version 02.01.00.05 allows a remote, authenticated attacker to execute arbitrary commands on the target device by adding an access control rule for a network object with a crafted hostname...

Authentication flaw

Authentication Bypass by Capture-replay vulnerability in Verizon Fios Quantum Gateway G1100 firmware version 02.01.00.05 allows an unauthenticated attacker with adjacent network access to intercept and replay login requests to gain access to the administrative web interface...

CVE-2019-3915

CVE-2019-3915 applies to Verizon Fios Quantum Gateway (G1100) firmware 02.01.00.05. The vulnerability is an authentication bypass via capture‑replay: because the web admin interface relies on HTTP (not HTTPS), an adjacent‑network attacker can intercept login requests and replay them to gain admin...

CVE-2019-3915

Authentication Bypass by Capture-replay vulnerability in Verizon Fios Quantum Gateway G1100 firmware version 02.01.00.05 allows an unauthenticated attacker with adjacent network access to intercept and replay login requests to gain access to the administrative web interface...

CVE-2019-3914

CVE-2019-3914 affects Verizon Fios Quantum Gateway (G1100) firmware 02.01.00.05. A remote attacker with authenticated access can exploit the router’s API by adding a firewall Access Control rule for a network object with a crafted hostname to execute arbitrary commands with root privileges. The v...

Verizon Fios Quantum Gateway Router < 02.02.00.13 Multiple Vulnerabilities

Verizon Fios Quantum Gateway Router is prone to multiple vulnerabilities. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fr...

Verizon Router Command Injection Flaw Impacts Millions

UPDATE Three vulnerabilities have been discovered in the Verizon Fios Quantum Gateway which, when exploited together, could give an attacker complete control of a victim’s network. The device is used by millions of Verizon home customers and functions as a home’s wireless router and digital...

Researcher Reveals Multiple Flaws in Verizon Fios Routers — PoC Released

A cybersecurity researcher at Tenable has discovered multiple security vulnerabilities in Verizon Fios Quantum Gateway Wi-Fi routers that could allow remote attackers to take complete control over the affected routers, exposing every other device connected to it. Currently used by millions of...