CVE-2026-22321

A stack-based buffer overflow in the device's Telnet/SSH CLI login routine occurs when a unauthenticated attacker send an oversized or unexpected username input. An overflow condition crashes the thread handling the login attempt, forcing the session to close. Because other CLI sessions remain...

CVE-2026-22321 Stack-Based Buffer Overflow in CLI Login Username Handling over CLI

A stack-based buffer overflow in the device's Telnet/SSH CLI login routine occurs when a unauthenticated attacker send an oversized or unexpected username input. An overflow condition crashes the thread handling the login attempt, forcing the session to close. Because other CLI sessions remain...

CVE-2019-12920

On Shenzhen Cylan Clever Dog Smart Camera DOG-2W and DOG-2W-V4 devices, an attacker on the network can login remotely to the camera and gain root access. The device ships with a hardcoded 12345678 password for the root account, accessible from a TELNET login prompt...

Planex MZK-DP300N 信任管理问题漏洞

The Planex MZK-DP300N is a hotel router travel router from Planex Japan. A trust management issue vulnerability exists in Planex MZK-DP300N version 1.07 and earlier, which stems from the use of hard-coded credentials and could allow an attacker to log in via Telnet and execute arbitrary commands ...

CVE-2025-62775

Mercku M6a devices through 2.1.0 allow root TELNET logins via the web admin password...

EUVD-2016-6028

Malware in sbrugna...

CVE-2021-34203

D-Link DIR-2640-US 1.01B04 is vulnerable to Incorrect Access Control. Router ac2600 dir-2640-us, when setting PPPoE, will start quagga process in the way of whole network monitoring, and this function uses the original default password and port. An attacker can easily use telnet to log in, modify...

CVE-2003-20001

An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided...

CVE-2003-20001

An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided...

PT-2025-14386 · Undefined · Undefined

An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided...

CVE-2003-20001

An issue was discovered on Mitel ICP VoIP 3100 devices. When a remote user attempts to log in via TELNET during the login wait time and an external call comes in, the system incorrectly divulges information about the call and any SMDR records generated by the system. The information provided...

CVE-2003-20001

The CVE-2003-20001 entry concerns Mitel ICP VoIP 3100 devices. During TELNET login wait time, if an external call arrives, the system discloses sensitive call-related information (including service type and extension) and any generated SMDR records. This represents an information-disclosure vulne...

D-Link DSL6740C 安全漏洞

The D-Link DSL6740C is a wireless VDSL router from China-based AUO D-Link. A security vulnerability exists in the D-Link DSL6740C, which can be exploited by an attacker to modify arbitrary user passwords and later log in to Web, SSH, and Telnet services via certain APIs...

CVE-2024-5633

Longse model LBH30FE200W cameras, as well as products based on this device, provide an unrestricted access for an attacker located in the same local network to an undocumented binary service CoolView on one of the ports. An attacker with a knowledge of the available commands is able to perform...

CVE-2024-34219

TOTOLINK CP450 V4.1.0cu.747B20191224 was discovered to contain a vulnerability in the SetTelnetCfg function, which allows attackers to log in through telnet...

PT-2024-3690 · Totolink · Totolink Cp450

Name of the Vulnerable Software and Affected Versions: TOTOLINK CP450 version 4.1.0cu.747 B20191224 Description: The issue is related to a vulnerability in the SetTelnetCfg function, which can be exploited by attackers to log in through telnet. This vulnerability exists due to insufficient input...

CVE-2022-33872

An improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in Telnet login components of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticated remote attacker to execute arbitrary command in t...

CVE-2022-33872

An improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in Telnet login components of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticated remote attacker to execute arbitrary command in t...

Command injection

An improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in Telnet login components of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticated remote attacker to execute arbitrary command in t...

CVE-2022-33872

The CVE-2022-33872 entry concerns FortiTester Telnet login components with an OS Command Injection (CWE-78) flaw. Affected versions include FortiTester 2.3.0–3.9.1, 4.0.0–4.2.0, and 7.0.0–7.1.0. The vulnerability allows an unauthenticated remote attacker to execute arbitrary commands in the under...