55 matches found
CVE-2022-0184
Insufficiently protected credentials vulnerability in 'TEPRA' PRO SR5900P Ver.1.080 and earlier and 'TEPRA' PRO SR-R7900P Ver.1.030 and earlier allows an attacker on the adjacent network to obtain credentials for connecting to the Wi-Fi access point with the infrastructure mode...
CVE-2022-0184
Insufficiently protected credentials vulnerability in 'TEPRA' PRO SR5900P Ver.1.080 and earlier and 'TEPRA' PRO SR-R7900P Ver.1.030 and earlier allows an attacker on the adjacent network to obtain credentials for connecting to the Wi-Fi access point with the infrastructure mode...
IFTTT eWeLink 安全漏洞
IFTTT eWeLink is an IFTTT open source application. It provides remote switching of fans and lights, control of wind speed and dimming of lights. A security vulnerability exists in the eWeLink mobile application version 4.9.2 and earlier for Android and version 4.9.1 and earlier for iOS, which can...
WiZ Colors A60 安全漏洞
WiZ Connected WiZ Colors A60 is a smart LED light from the Chinese company WiZ Connected. A security vulnerability exists in WiZ Colors A60 1.14.0, which stems from Wi-Fi credentials being stored in plaintext in flash memory...
PT-2020-9990 · Jinan Usr Iot · Usr-Wifi232-S/T/G2/H Low Power Wifi Module
Name of the Vulnerable Software and Affected Versions: Jinan USR IOT USR-WIFI232-S/T/G2/H Low Power WiFi Module version 1.2.2 Description: A cross-site scripting XSS issue in the configuration web interface allows attackers to leak credentials of the Wi-Fi access point and the web interface login...
Unspecified Vulnerability in Technicolor TC7110.B
Technicolor TC7110.B is a cable modem from the French Technicolor group. A security vulnerability exists in Technicolor TC7110.B STC version 8.62.02. A remote attacker could exploit the vulnerability to obtain Wi-Fi credentials by sending an SNMP request...
CVE-2018-20442
Technicolor TC7110.B STC8.62.02 devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.2863.205.10.1.30.4.1.14.1.3.32 and iso.3.6.1.4.1.2863.205.10.1.30.4.2.4.1.2.32 SNMP requests...
CVE-2018-20441
Technicolor TC7200.TH2v2 SC05.00.22 devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.2863.205.10.1.30.4.1.14.1.3.32 and iso.3.6.1.4.1.2863.205.10.1.30.4.2.4.1.2.32 SNMP requests...
CVE-2018-20443
Technicolor TC7200.d1I TC7200.d1IE-N23E-c7000r5712-170406-HAT devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests...
CVE-2017-14219
CVE-2017-14219 affects Intelbras Wireless N 150Mbps router (WRN 240). The vulnerability is a persistent XSS in the router’s web UI, enabling theft of wireless credentials via a crafted ESSID, related to userRpm/popupSiteSurveyRpm.htm and userRpm/WlanSecurityRpm.htm. Proofs of concept show an atta...
PT-2017-13302 · Intelbras · Intelbras Wireless N 150Mbps Router
Name of the Vulnerable Software and Affected Versions: Intelbras Wireless N 150Mbps router with firmware WRN 240 Description: The issue allows attackers to steal wireless credentials without being connected to the network. This is related to userRpm/popupSiteSurveyRpm.htm and...
PT-2017-7966 · D Link · Dap-2553 +2
Name of the Vulnerable Software and Affected Versions: D-Link DAP-1353 versions 3.15 and earlier D-Link DAP-2553 versions 1.31 and earlier D-Link DAP-3520 versions 1.16 and earlier Description: The issue allows the revelation of wireless passwords and administrative usernames and passwords over...
CVE-2016-9355
An issue was discovered in Becton, Dickinson and Company BD Alaris 8015 Point of Care PC unit, Version 9.5 and prior versions, and Version 9.7. An unauthorized user with physical access to an Alaris 8015 PC unit may be able to obtain unencrypted wireless network authentication credentials and oth...
CVE-2016-8375
An issue was discovered in Becton, Dickinson and Company BD Alaris 8015 Point of Care PC unit, Version 9.5 and prior versions, and Version 9.7, and 8000 PC unit. An unauthorized user with physical access to an affected Alaris PC unit may be able to obtain unencrypted wireless network authenticati...
Metasploit 3.5.1 adds Cisco device exploitation !
Metasploit now enables security professionals to exploit Cisco devices, performs passive reconnaissance through traffic analysis, provides more exploits and evaluates an organization's password security by brute forcing an ever increasing range of services. This latest release adds stealth...