Lucene search
K

100 matches found

NVD
NVD
added 2025/07/31 8:15 p.m.9 views

CVE-2025-8286

The affected products expose an unauthenticated Telnet-based command line interface that could allow an attacker to modify hardware configurations, manipulate data, or factory reset the device...

9.3CVSS0.01217EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/10 9:20 p.m.5 views

CVE-2025-3461

The Quantenna Wi-Fi chips ship with an unauthenticated telnet interface by default. This is an instance of CWE-306, "Missing Authentication for Critical Function," and is estimated as a CVSS 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N. This issue affects Quantenna Wi-Fi chipset through versi...

9.1CVSS9.4AI score0.00503EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/06/08 9:2 p.m.19 views

CVE-2025-3461 ON Semiconductor Quantenna Telnet Missing Authentication

The Quantenna Wi-Fi chips ship with an unauthenticated telnet interface by default. This is an instance of CWE-306, "Missing Authentication for Critical Function," and is estimated as a CVSS 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N. This issue affects Quantenna Wi-Fi chipset through versi...

9.1CVSS0.00503EPSS
Exploits1References2
CVE
CVE
added 2025/06/08 9:2 p.m.65 views

CVE-2025-3461

The CVE-2025-3461 entry concerns Quantenna Wi‑Fi chipsets with an unauthenticated telnet interface enabled by default (CWE-306: Missing Authentication for Critical Function). Affected product: Quantenna Wi‑Fi chipset through SDK version 8.0.0.28. Reported impact: potential unauthorized access via...

9.8CVSS9.5AI score0.00503EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/08 12:0 a.m.6 views

PT-2025-24375 · Quantenna · Quantenna Wi-Fi Chipset

Name of the Vulnerable Software and Affected Versions: Quantenna Wi-Fi chipset versions through 8.0.0.28 Description: The issue concerns an unauthenticated telnet interface that ships by default with the Quantenna Wi-Fi chips, classified as CWE-306, "Missing Authentication for Critical Function."...

9.4CVSS6.6AI score0.00503EPSS
Exploits1References11
CNNVD
CNNVD
added 2025/06/08 12:0 a.m.4 views

Quantenna Communications Quantenna Wi-Fi chipset 安全漏洞

Quantenna Communications Quantenna Wi-Fi chipset is a WiFi chip from Quantenna Communications, USA. A security vulnerability exists in Quantenna Communications Quantenna Wi-Fi chipset version 8.0.0.28 and prior versions, which originates from an unauthenticated telnet interface and could lead to...

9.8CVSS6.7AI score0.00503EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 1:16 a.m.9 views

CVE-2022-29965

The Emerson DeltaV Distributed Control System DCS controllers and IO cards through 2022-04-29 misuse passwords. Access to privileged operations on the maintenance port TELNET interface 23/TCP on M-series and SIS CSLS/LSNB/LSNG nodes is controlled by means of utility passwords. These passwords are...

7.5CVSS6.9AI score0.01319EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:24 p.m.3 views

CVE-2020-11915

An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14. By sending a setparams.cgi?telnetd=1=1=1 request to the webserver, it is possible to enable the telnet interface on the device. The telnet interface can then be used to obtain access to the device with root privileges via a...

6.8CVSS6.7AI score0.00586EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:28 a.m.7 views

CVE-2019-20467

An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. The device by default has a TELNET interface available which is not advertised or functionally used, but is nevertheless available. Two backdoor accounts root and default exist that can be used on this...

10CVSS7.2AI score0.03653EPSS
Exploits1References1
OSV
OSV
added 2025/03/11 10:15 a.m.2 views

CVE-2025-27493

A vulnerability has been identified in SiPass integrated AC5102 ACC-G2 All versions V6.4.9, SiPass integrated ACC-AP All versions V6.4.9. Affected devices improperly sanitize user input for specific commands on the telnet command line interface. This could allow an authenticated local administrat...

6.7CVSS5.8AI score0.00169EPSS
Exploits0References1
NVD
NVD
added 2025/03/11 10:15 a.m.11 views

CVE-2025-27493

A vulnerability has been identified in SiPass integrated AC5102 ACC-G2 All versions V6.4.9, SiPass integrated ACC-AP All versions V6.4.9. Affected devices improperly sanitize user input for specific commands on the telnet command line interface. This could allow an authenticated local administrat...

9.3CVSS0.00169EPSS
Exploits0References1
CVE
CVE
added 2025/03/11 9:48 a.m.54 views

CVE-2025-27493

The CVE-2025-27493 entry concerns Siemens SiPass integrated AC5102 (ACC-G2) and ACC-AP, with all versions prior to V6.4.9 affected. The root cause is improper sanitization of user input for telnet commands on the device CLI, enabling an authenticated local administrator to inject and execute arbi...

9.3CVSS7.5AI score0.00169EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/03/11 9:48 a.m.15 views

CVE-2025-27493

A vulnerability has been identified in SiPass integrated AC5102 ACC-G2 All versions V6.4.9, SiPass integrated ACC-AP All versions V6.4.9. Affected devices improperly sanitize user input for specific commands on the telnet command line interface. This could allow an authenticated local administrat...

9.3CVSS0.00169EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.5 views

Siemens SiPass Integrated 输入验证错误漏洞

Siemens SiPass Integrated is a powerful and extremely flexible access control system from Siemens Germany. An input validation error vulnerability exists in the Siemens SiPass Integrated AC5102 ACC-G2 and ACC-AP V6.4.9 and earlier versions, which stems from not properly clearing user inputs on th...

9.3CVSS6.6AI score0.00169EPSS
Exploits0References3
OSV
OSV
added 2025/03/02 5:15 p.m.4 views

CVE-2025-1819

A vulnerability, which was classified as critical, was found in Tenda AC7 1200M 15.03.06.44. Affected is the function TendaTelnet of the file /goform/telnet. The manipulation of the argument lanip leads to os command injection. It is possible to launch the attack remotely. The exploit has been...

9.8CVSS5.6AI score0.0183EPSS
Exploits0References5
NVD
NVD
added 2025/02/04 3:15 p.m.29 views

CVE-2024-23690

The end-of-life Netgear FVS336Gv2 and FVS336Gv3 are affected by a command injection vulnerability in the Telnet interface. An authenticated and remote attacker can execute arbitrary OS commands as root over Telnet by sending crafted "util backupconfiguration" commands...

7.2CVSS0.01107EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/04 2:34 p.m.22 views

CVE-2024-23690 EOL Netgear FVS336v3 Telnet Configuration Backup Command Injection

The end-of-life Netgear FVS336Gv2 and FVS336Gv3 are affected by a command injection vulnerability in the Telnet interface. An authenticated and remote attacker can execute arbitrary OS commands as root over Telnet by sending crafted "util backupconfiguration" commands...

7.2CVSS0.01107EPSS
Exploits0References1
CNVD
CNVD
added 2024/07/12 12:0 a.m.3 views

D-Link DAP-2622 Hardcoded Credential Authentication Bypass Vulnerability

The D-Link DAP-2622 is a wireless access point AP from D-Link designed for wireless network coverage in an enterprise or commercial environment. The D-Link DAP-2622 suffers from a hard-coded credential authentication bypass vulnerability that originates from the Telnet command line interface usin...

8.8CVSS7.3AI score0.00865EPSS
Exploits0References1
OSV
OSV
added 2024/05/03 3:15 a.m.3 views

CVE-2023-40478

NETGEAR RAX30 Telnet CLI passwd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Although authentication is required to exploit this vulnerability, th...

6.8CVSS6.3AI score0.00722EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/02/06 12:0 a.m.19 views

Bosch Security Systems Multiple Products Stack-based Buffer Overflow (CVE-2021-23850)

A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload...

7.2CVSS7.8AI score0.01466EPSS
Exploits0References3
Rows per page
Query Builder