20 matches found
EUVD-2019-9529
Malware in sbrugna...
EUVD-2019-9530
Malware in sbrugna...
CVE-2019-19940
Incorrect input sanitation in text-oriented user interfaces telnet, ssh in Swisscom Centro Grande before 6.16.12 allows remote authenticated users to execute arbitrary commands via command injection...
CVE-2019-19941
Missing hostname validation in Swisscom Centro Grande before 6.16.12 allows a remote attacker to inject its local IP address as a domain entry in the DNS service of the router via crafted hostnames in DHCP requests, causing XSS...
Swisscom Centro Grande Cross-Site Scripting Vulnerability
The Swisscom Centro Grande is a router from Swisscom, Switzerland. A cross-site scripting vulnerability exists in Swisscom Centro Grande versions prior to 6.16.12, which stems from the lack of proper validation of client-side data by the WEB application. An attacker could exploit the vulnerabilit...
CVE-2019-19941
Missing hostname validation in Swisscom Centro Grande before 6.16.12 allows a remote attacker to inject its local IP address as a domain entry in the DNS service of the router via crafted hostnames in DHCP requests, causing XSS...
CVE-2019-19941
Missing hostname validation in Swisscom Centro Grande before 6.16.12 allows a remote attacker to inject its local IP address as a domain entry in the DNS service of the router via crafted hostnames in DHCP requests, causing XSS...
CVE-2019-19940
Incorrect input sanitation in text-oriented user interfaces telnet, ssh in Swisscom Centro Grande before 6.16.12 allows remote authenticated users to execute arbitrary commands via command injection...
CVE-2019-19942
Missing output sanitation in Swisscom Centro Grande Centro Grande before 6.16.12, Centro Business 1.0 ADB before 7.10.18, and Centro Business 2.0 before 8.02.04 allows a remote attacker to perform DNS spoofing against the web interface via crafted hostnames in DHCP requests...
Design/Logic Flaw
Missing hostname validation in Swisscom Centro Grande before 6.16.12 allows a remote attacker to inject its local IP address as a domain entry in the DNS service of the router via crafted hostnames in DHCP requests, causing XSS...
Command injection
Incorrect input sanitation in text-oriented user interfaces telnet, ssh in Swisscom Centro Grande before 6.16.12 allows remote authenticated users to execute arbitrary commands via command injection...
CVE-2019-19942
Missing output sanitation in Swisscom Centro Grande Centro Grande before 6.16.12, Centro Business 1.0 ADB before 7.10.18, and Centro Business 2.0 before 8.02.04 allows a remote attacker to perform DNS spoofing against the web interface via crafted hostnames in DHCP requests...
CVE-2019-19941
Missing hostname validation in Swisscom Centro Grande before 6.16.12 allows a remote attacker to inject its local IP address as a domain entry in the DNS service of the router via crafted hostnames in DHCP requests, causing XSS...
CVE-2019-19941
CVE-2019-19941 affects Swisscom Centro Grande routers present before version 6.16.12. The flaw is missing hostname validation in the DNS service, allowing a remote attacker to craft DHCP hostnames that inject the attacker's local IP as a domain entry, which can result in cross-site scripting via ...
CVE-2019-19940
Incorrect input sanitation in text-oriented user interfaces telnet, ssh in Swisscom Centro Grande before 6.16.12 allows remote authenticated users to execute arbitrary commands via command injection...
CVE-2019-19940
The CVE-2019-19940 entry concerns Swisscom Centro Grande prior to 6.16.12, where incorrect input sanitation in text-oriented interfaces (telnet/ssh) lets remote authenticated users run arbitrary commands via command injection. The vulnerability is tied to text-based UIs and requires authenticatio...
Design/Logic Flaw
The certificate verification functions in the HNDS service in Swisscom Centro Grande ADB DSL routers with firmware before 6.14.00 allows remote attackers to access the management functions via unknown vectors...
CVE-2015-1188
The certificate verification functions in the HNDS service in Swisscom Centro Grande ADB DSL routers with firmware before 6.14.00 allows remote attackers to access the management functions via unknown vectors...
CVE-2015-1188
The CVE-2015-1188 issue affects Swisscom Centro Grande (ADB) DSL routers with firmware
Swisscom Centro Grande DSL Router HNDS Service Certificate Validation Failure Validation Bypass Vulnerability
Swisscom Centro Grande DSL Router is a router device. A flaw in the Swisscom Centro Grande DSL Router HNDS service allows remote attackers to bypass the authentication mechanism and gain unauthorized access to the device by failing to properly validate the certificate...