9 matches found
CVE-2023-38297
An issue was discovered in a third-party com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable pre-installed app with a package name of com.factory.mmigroup versionCode='3', versionName='2.1...
PT-2024-12702 · Unknown · Com.Factory.Mmigroup
Name of the Vulnerable Software and Affected Versions: com.factory.mmigroup version 2.1 Description: An issue was discovered in the com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable...
CVE-2023-38297
An issue was discovered in a third-party com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable pre-installed app with a package name of com.factory.mmigroup versionCode='3', versionName='2.1...
CVE-2023-38297
CVE-2023-38297 affects the pre-installed com.factory.mmigroup app (version 2.1) on multiple Android devices. The component runs as the system user and exposes zero-permission capabilities to local apps, including arbitrary AT command execution, programmatic factory reset, IMEI/serial leakage, pow...
Design/Logic Flaw
An issue was discovered on Bell HomeHub 3000 SG48222070 devices. Remote authenticated users can retrieve the serial number via cgi/json-req - this is an information leak because the serial number is intended to prove an actor's physical access to the device...
PT-2023-11451 · Bell · Bell Homehub 3000
Name of the Vulnerable Software and Affected Versions: Bell HomeHub 3000 version SG48222070 Description: An issue allows remote authenticated users to retrieve the serial number via the "cgi/json-req" endpoint. This is considered an information leak because the serial number is intended to prove ...
Netgear NETGEAR 信息泄露漏洞
Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. An information disclosure vulnerability exists in certain NETGEAR devices, which can result in the disclosure of sensitive information on...
CVE-2016-10175
The NETGEAR WNR2000v5 router leaks its serial number when performing a request to the /BRSnetgearsuccess.html URI. This serial number allows a user to obtain the administrator username and password, when used in combination with the CVE-2016-10176 vulnerability that allows resetting the answers t...
CVE-2016-10175
The NETGEAR WNR2000v5 router leaks its serial number when performing a request to the /BRSnetgearsuccess.html URI. This serial number allows a user to obtain the administrator username and password, when used in combination with the CVE-2016-10176 vulnerability that allows resetting the answers t...