23 matches found
EUVD-2020-30290
Malware in sbrugna...
PT-2023-32129 · Beijing Baichuo · Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform
Name of the Vulnerable Software and Affected Versions: Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform versions up to 20230928 Description: A critical vulnerability was found in the Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent...
Stored XSS Vulnerability in the Smart Gateway Configuration Platform of Beijing Bibi Technology Co.
Ltd. is a company with professional Wi-Fi technology, which is committed to combining Internet technology with traditional industries to help industry customers embrace the Internet and create new value for traditional industries. There is a stored XSS vulnerability in the Smart Gateway...
Unauthorized Access Vulnerability in ZTE Sky Smart Gateway
ZTE Corporation is a leading global provider of integrated communications solutions. An unauthorized access vulnerability exists in the ZTE Sky Smart Gateway. An attacker could exploit the vulnerability to obtain sensitive information...
S. Siedle & Soehne SG 150-0 Smart Gateway Competitive Conditions Issue Vulnerability
S.Siedle & Soehne SG 150-0 Smart Gateway is a home smart gateway product from S.Siedle & Soehne, Germany. A security vulnerability exists in the S.Siedle & Soehne SG 150-0 Smart Gateway versions prior to 1.2.4. The vulnerability can be exploited by an attacker to gain root access to the gateway...
CVE-2020-9475
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows local privilege escalation via a race condition in logrotate. By using an exploit chain, an attacker with access to the network can get root access on the gateway...
CVE-2020-9474
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows remote code execution via the backup functionality in the web frontend. By using an exploit chain, an attacker with access to the network can get root access on the gateway...
CVE-2020-9475
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows local privilege escalation via a race condition in logrotate. By using an exploit chain, an attacker with access to the network can get root access on the gateway...
Remote code execution
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows remote code execution via the backup functionality in the web frontend. By using an exploit chain, an attacker with access to the network can get root access on the gateway...
Race condition
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows local privilege escalation via a race condition in logrotate. By using an exploit chain, an attacker with access to the network can get root access on the gateway...
CVE-2020-9475
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows local privilege escalation via a race condition in logrotate. By using an exploit chain, an attacker with access to the network can get root access on the gateway...
CVE-2020-9475
The S. Siedle & Soehne SG 150-0 Smart Gateway (versions before 1.2.4) is affected by a local privilege escalation due to a race condition in logrotate. An attacker with network access can chain exploits to gain root access on the gateway. The issue is documented across multiple sources (e.g., CVE...
CVE-2020-9474
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows remote code execution via the backup functionality in the web frontend. By using an exploit chain, an attacker with access to the network can get root access on the gateway...
CVE-2020-9474
The SG 150-0 Smart Gateway from S.Siedle & Soehne is affected prior to version 1.2.4. A remote code execution exists via the backup function in the web frontend, and an attacker with network access can escalate to root on the gateway. Remediation: upgrade to version 1.2.4 or later (as cited in CN...
CVE-2020-9473
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 has a passwordless ftp ssh user. By using an exploit chain, an attacker with access to the network can get root access on the gateway...
Design/Logic Flaw
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 has a passwordless ftp ssh user. By using an exploit chain, an attacker with access to the network can get root access on the gateway...
CVE-2020-9473
The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 has a passwordless ftp ssh user. By using an exploit chain, an attacker with access to the network can get root access on the gateway...
CVE-2020-9473
CVE-2020-9473 affects the S. Siedle & Soehne SG 150-0 Smart Gateway older than 1.2.4. It documents a passwordless ftp/SSH user, allowing an attacker with network access to chain exploits and achieve root access on the gateway. CVSS metrics from the sources indicate high impact (I/H, A/H) with net...
Logic Flaw Vulnerability in Intelligent Gateway of Beijing BiNian Technology Co.
Smart Gateway is a multi-service converged gateway that integrates the features of wireless controller AC, router and firewall independently developed by Beijing Beyond Technology Co. A logic flaw vulnerability exists in the Intelligent Gateway of Beijing BiNian Technology Co. An attacker can for...
Command Execution Vulnerability in China Telecom's Smart Gateway Management Platform
China Telecom Group Corporation is a large state-owned communications enterprise in China, a global partner of Shanghai World Expo, and one of the "World's Top 500 Enterprises" for many years in a row. It mainly operates integrated information services such as fixed-line telephony, mobile...