31 matches found
CVE-2021-46060
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...
CVE-2021-27173
An issue was discovered on FiberHome HG6245D devices through RP2613. There is a telnet?enable=0&key=calculatedBR0MAC backdoor API, without authentication, provided by the HTTP server. This will remove firewall rules and allow an attacker to reach the telnet server used for the CLI...
Lantronix XPort EDGE Web Manager and telnet CLI cleartext transmission of sensitive information vulnerability
Summary An information disclosure vulnerability exists in the Web Manager and telnet CLI functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause information disclosure. An attacker can sniff the network to trigger this...
CVE-2017-6650
A vulnerability in the Telnet CLI command of Cisco NX-OS System Software 7.1 through 7.3 running on Cisco Nexus Series Switches could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation of command arguments. An...
CVE-2017-6650
A vulnerability in the Telnet CLI command of Cisco NX-OS System Software 7.1 through 7.3 running on Cisco Nexus Series Switches could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation of command arguments. An...
Cisco Nexus 5000 Series Switches Telnet CLI Command Injection Vulnerability (cisco-sa-20170517-nss1)
A vulnerability in the Telnet CLI command of Cisco NX-OS System Software running on Cisco Nexus 5000 Series Switches could allow an authenticated, local attacker to perform a command injection attack. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a...
Input validation
All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service of Quagga daemons, or even the entire host. When Quagga daemons are configured with their telnet CLI enabled, anyone who can connect to the TCP port...
CVE-2017-5495
All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service of Quagga daemons, or even the entire host. When Quagga daemons are configured with their telnet CLI enabled, anyone who can connect to the TCP port...
Debian Security Advisory DSA 415-1 (zebra)
The remote host is missing an update to zebra announced via advisory DSA 415-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SiemensSANTIS50.txt
Secure Network - Security Research Advisory Vuln name: Siemens SANTIS 50 Authentication Vulnerability Systems affected: Siemens Santis 50 Wireless router firmware version: 4.2.8.0 Likely to be affected: Ericsson HN294dp Dynalink RTA300W Severity: medium risk Local/Remote: Remote limited to the LA...
Siemens SANTIS 50 Authentication Vulnerability
Secure Network - Security Research Advisory Vuln name: Siemens SANTIS 50 Authentication Vulnerability Systems affected: Siemens Santis 50 Wireless router firmware version: 4.2.8.0 Likely to be affected: Ericsson HN294dp Dynalink RTA300W Severity: medium risk Local/Remote: Remote limited to the LA...