Siemens CP-XXXX Series Exposed Serial Shell

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Exposed Serial Shell on multiple PLCs product: Siemens CP-XXXX Series CP-2014, CP-2016, CP-2017, CP-2019, CP-5014 vulnerable version: All hardware revisions fixed version...

Huawei UAP2105 Command Injection Vulnerability

The Huawei UAP2105 is a home-based WCDMA wireless network access device. The Huawei UAP2105 suffers from a command injection vulnerability that allows local attackers to execute VxWorks debugging commands via a serial port access shell to view and modify memory and files, resulting in information...