Lucene search
+L

9 matches found

NVD
NVD
added 2024/04/22 3:15 p.m.26 views

CVE-2023-38297

An issue was discovered in a third-party com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable pre-installed app with a package name of com.factory.mmigroup versionCode='3', versionName='2.1...

8.4CVSS7.2AI score0.01092EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/22 12:0 a.m.6 views

PT-2024-12702 · Unknown · Com.Factory.Mmigroup

Name of the Vulnerable Software and Affected Versions: com.factory.mmigroup version 2.1 Description: An issue was discovered in the com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable...

8.4CVSS6.7AI score0.01092EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/04/22 12:0 a.m.17 views

CVE-2023-38297

An issue was discovered in a third-party com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable pre-installed app with a package name of com.factory.mmigroup versionCode='3', versionName='2.1...

7.6AI score0.01092EPSS
Exploits0References1
CVE
CVE
added 2024/04/22 12:0 a.m.101 views

CVE-2023-38297

CVE-2023-38297 affects the pre-installed com.factory.mmigroup app (version 2.1) on multiple Android devices. The component runs as the system user and exposes zero-permission capabilities to local apps, including arbitrary AT command execution, programmatic factory reset, IMEI/serial leakage, pow...

8.4CVSS7.4AI score0.01092EPSS
Exploits0References1
Prion
Prion
added 2023/11/17 12:15 p.m.11 views

Design/Logic Flaw

An issue was discovered on Bell HomeHub 3000 SG48222070 devices. Remote authenticated users can retrieve the serial number via cgi/json-req - this is an information leak because the serial number is intended to prove an actor's physical access to the device...

4CVSS6.7AI score0.00652EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/17 12:0 a.m.8 views

PT-2023-11451 · Bell · Bell Homehub 3000

Name of the Vulnerable Software and Affected Versions: Bell HomeHub 3000 version SG48222070 Description: An issue allows remote authenticated users to retrieve the serial number via the "cgi/json-req" endpoint. This is considered an information leak because the serial number is intended to prove ...

4.3CVSS6.1AI score0.00652EPSS
Exploits1References5
CNNVD
CNNVD
added 2021/12/26 12:0 a.m.5 views

Netgear NETGEAR 信息泄露漏洞

Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. An information disclosure vulnerability exists in certain NETGEAR devices, which can result in the disclosure of sensitive information on...

6.1CVSS5.7AI score0.00578EPSS
Exploits0References3
NVD
NVD
added 2017/01/30 4:59 a.m.19 views

CVE-2016-10175

The NETGEAR WNR2000v5 router leaks its serial number when performing a request to the /BRSnetgearsuccess.html URI. This serial number allows a user to obtain the administrator username and password, when used in combination with the CVE-2016-10176 vulnerability that allows resetting the answers t...

9.8CVSS9.3AI score0.64983EPSS
Exploits3References5
OSV
OSV
added 2017/01/30 4:59 a.m.6 views

CVE-2016-10175

The NETGEAR WNR2000v5 router leaks its serial number when performing a request to the /BRSnetgearsuccess.html URI. This serial number allows a user to obtain the administrator username and password, when used in combination with the CVE-2016-10176 vulnerability that allows resetting the answers t...

9.8CVSS5.8AI score0.64983EPSS
Exploits3References5
Rows per page
Query Builder