Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2005-3715

Malware in sbrugna...

7.5CVSS6.4AI score0.01606EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2005-3714

Malware in sbrugna...

7.5CVSS6.4AI score0.00741EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/05/21 8:27 p.m.3 views

CVE-2002-1936

UTStarcom BAS 1000 3.1.10 creates several default or back door accounts and passwords, which allows remote attackers to gain access via 1 field account with a password of "field", 2 guru account with a password of "3noguru", 3 snmp account with a password of "snmp", or 4 dbase account with a...

7.5CVSS7.6AI score0.01402EPSS
Exploits0References1
CNVD
CNVDadded 2018/05/21 12:0 a.m.3 views

UTStar WA3002G4 Authentication Bypass Vulnerability

The UTStar WA3002G4 is a modem from UTStarcom USA. An authentication bypass vulnerability exists in the UTStar WA3002G4. An attacker can use this vulnerability to directly access administrator settings and obtain plaintext credentials from the HTML source...

10CVSS9.4AI score0.60326EPSS
Exploits6References1
0day.today
0day.todayadded 2017/06/19 12:0 a.m.25 views

UTstarcom WA3002G4 - Unauthenticated DNS Change Exploit

Exploit for hardware platform in category web applications !/bin/bash UTstarcom WA3002G4 Unauthenticated Remote DNS Change Exploit Copyright 2017 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Description: The vulnerability exist in the web interface, whic...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2017/06/17 12:0 a.m.47 views

UTstarcom WA3002G4 Unauthenticated Remote DNS Changer

!/bin/bash UTstarcom WA3002G4 Unauthenticated Remote DNS Change Exploit Copyright 2017 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Description: The vulnerability exist in the web interface, which is accessible without authentication. Once modified,...

Exploits0
Exploit DB
Exploit DBadded 2017/06/17 12:0 a.m.33 views

UTstarcom WA3002G4 - DNS Change

!/bin/bash UTstarcom WA3002G4 Unauthenticated Remote DNS Change Exploit Copyright 2017 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Description: The vulnerability exist in the web interface, which is accessible without authentication. Once modified,...

7.4AI score
Exploits0
NVD
NVDadded 2005/11/21 11:3 a.m.6 views

CVE-2005-3717

The telnet daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has a default username "target" and password "password", which allows remote attackers to gain full access to the system...

7.5CVSS7AI score0.00741EPSS
Exploits0References4
NVD
NVDadded 2005/11/21 11:3 a.m.9 views

CVE-2005-3718

UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 does not allow users to disable access to 1 SNMP or 2 the rlogin port TCP 513, which allows remote attackers to exploit other vulnerabilities such as CVE-2005-3716, or execute arbitrary shell commands via rlogin, whic...

7.5CVSS8AI score0.01606EPSS
Exploits0References4
NVD
NVDadded 2005/11/21 11:3 a.m.7 views

CVE-2005-3716

The SNMP daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has hard-coded public credentials that cannot be changed, which allows attackers to obtain sensitive information...

7.5CVSS7.3AI score0.00507EPSS
Exploits0References4
Cvelist
Cvelistadded 2005/11/21 11:0 a.m.13 views

CVE-2005-3716

The SNMP daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has hard-coded public credentials that cannot be changed, which allows attackers to obtain sensitive information...

7.3AI score0.00507EPSS
Exploits0References4
CVE
CVEadded 2005/11/21 11:0 a.m.41 views

CVE-2005-3716

CVE-2005-3716 affects UTStarcom F1000 VOIP WIFI Phone (s2.0, VxWorks 5.5.1, WIND 2.6). The SNMP daemon uses hard-coded public credentials that cannot be changed, enabling attackers to obtain sensitive information. No exploit details are provided in the documents, and the impact is reported as par...

7.5CVSS6.6AI score0.00507EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2005/11/21 11:0 a.m.38 views

CVE-2005-3718

Affected product: UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6. Vulnerability details: The device does not allow users to disable access to (1) SNMP or (2) rlogin on TCP 513, enabling remote attackers to trigger other vulnerabilities (e.g., CVE-2005-3716) or exe...

7.5CVSS8AI score0.01606EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2005/11/21 11:0 a.m.12 views

CVE-2005-3717

The telnet daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has a default username "target" and password "password", which allows remote attackers to gain full access to the system...

7AI score0.00741EPSS
Exploits0References4
Cvelist
Cvelistadded 2005/11/21 11:0 a.m.12 views

CVE-2005-3718

UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 does not allow users to disable access to 1 SNMP or 2 the rlogin port TCP 513, which allows remote attackers to exploit other vulnerabilities such as CVE-2005-3716, or execute arbitrary shell commands via rlogin, whic...

8AI score0.01606EPSS
Exploits0References4
CVE
CVEadded 2005/11/21 11:0 a.m.46 views

CVE-2005-3717

CVE-2005-3717 documents a vulnerability in the telnet daemon of UTStarcom F1000 VOIP WIFI Phone (S2.0) running VxWorks 5.5.1 with kernel WIND 2.6. The issue arises from a default account with username "target" and password "password", enabling remote attackers to gain full system access. Public s...

7.5CVSS7.4AI score0.00741EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2005/11/21 12:0 a.m.1 views

PT-2005-4471 · Wind River +1 · Vxworks +2

Name of the Vulnerable Software and Affected Versions: UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 Description: The issue concerns hard-coded public credentials in the SNMP daemon that cannot be changed, allowing attackers to obtain sensitive information...

7.5CVSS5.9AI score0.00507EPSS
Exploits0References6
securityvulns
securityvulnsadded 2005/11/17 12:0 a.m.43 views

[Full-disclosure] UTstarcom F1000 VoIP Wifi phone multiple vulnerabilities

I disclosed today the following vulnerabilities at the 32nd CSI conference in Washington, D.C. https://www.cmpevents.com/CSI32/a.asp?option=G&V=3&id=406438 Thanks, Shawn Merdinger =============================================================== VENDOR: UTStarcom VENDOR NOTIFIED: 27 June, 2005 via...

0.6AI score
Exploits0
securityvulns
securityvulnsadded 2005/11/17 12:0 a.m.20 views

Multiple UTstarcom F1000 wirieless Wi-Fi VoIP phones vulnerabilities

SNMP access, unauthenticated telnet TCP/21 and rlogin TCP/513 access...

3.4AI score
Exploits0References1
Cvelist
Cvelistadded 2005/06/28 4:0 a.m.12 views

CVE-2002-1936

UTStarcom BAS 1000 3.1.10 creates several default or back door accounts and passwords, which allows remote attackers to gain access via 1 field account with a password of "field", 2 guru account with a password of "3noguru", 3 snmp account with a password of "snmp", or 4 dbase account with a...

7.1AI score0.01402EPSS
Exploits0References3
Rows per page
Query Builder