25 matches found
CVE-2026-1690
A flaw has been found in Tenda HG10 USHG7HG9HG10re300001138enxpon. This affects the function system of the file /boaform/formSysCmd. This manipulation of the argument sysCmd causes command injection. The attack may be initiated remotely. The exploit has been published and may be used...
CVE-2026-1690
A flaw has been found in Tenda HG10 USHG7HG9HG10re300001138enxpon. This affects the function system of the file /boaform/formSysCmd. This manipulation of the argument sysCmd causes command injection. The attack may be initiated remotely. The exploit has been published and may be used...
EUVD-2026-5019
A flaw has been found in Tenda HG10 USHG7HG9HG10re300001138enxpon. This affects the function system of the file /boaform/formSysCmd. This manipulation of the argument sysCmd causes command injection. The attack may be initiated remotely. The exploit has been published and may be used...
CVE-2026-1690 Tenda HG10 formSysCmd system command injection
A flaw has been found in Tenda HG10 USHG7HG9HG10re300001138enxpon. This affects the function system of the file /boaform/formSysCmd. This manipulation of the argument sysCmd causes command injection. The attack may be initiated remotely. The exploit has been published and may be used...
CVE-2026-1690
A flaw has been found in Tenda HG10 USHG7HG9HG10re300001138enxpon. This affects the function system of the file /boaform/formSysCmd. This manipulation of the argument sysCmd causes command injection. The attack may be initiated remotely. The exploit has been published and may be used...
CVE-2021-27372
Realtek xPON RTL9601D SDK 1.9 stores passwords in plaintext which may allow attackers to possibly gain access to the device with root permissions via the build-in network monitoring tool and execute arbitrary commands...
EUVD-2021-14130
Malware in sbrugna...
PT-2024-28788 · Nepstech · Nepstech Wifi Router Xpon
Name of the Vulnerable Software and Affected Versions: Nepstech Wifi Router xpon terminal model NTPL-Xpon1GFEVN version 1.0 Firmware V2.0.1 Description: The issue concerns a Cross-Site Request Forgery CSRF vulnerability in the password change function. This allows remote attackers to change the...
PT-2024-27785 · Nepstech · Nepstech Wifi Router Xpon
Name of the Vulnerable Software and Affected Versions: Nepstech Wifi Router xpon terminal NTPL-Xpon1GFEVN, hardware version 1.0, firmware version 2.0.1 Description: The issue allows a remote attacker to execute arbitrary code via the router's Telnet port 2345 without requiring authentication...
Nepstech Router Security Vulnerability
Nepstech Router is a series of routers from Nepstech. A security vulnerability exists in Nepstech Router xpon terminal NTPL-Xpon1GFEVN. An attacker could exploit the vulnerability to execute arbitrary code via the router's Telnet port 2345 without authentication credentials...
Weak Password Vulnerability in ZTE Corporation's Xpon-ONUs
Xpon-ONU is a router from ZTE Corporation. A weak password vulnerability exists in the ZTE Corporation Xpon-ONU, which can be exploited by attackers to obtain sensitive information...
CVE-2021-27372
Realtek xPON RTL9601D SDK 1.9 stores passwords in plaintext which may allow attackers to possibly gain access to the device with root permissions via the build-in network monitoring tool and execute arbitrary commands...
CVE-2021-27372
Realtek xPON RTL9601D SDK 1.9 stores passwords in plaintext which may allow attackers to possibly gain access to the device with root permissions via the build-in network monitoring tool and execute arbitrary commands...
Command injection
Realtek xPON RTL9601D SDK 1.9 stores passwords in plaintext which may allow attackers to possibly gain access to the device with root permissions via the build-in network monitoring tool and execute arbitrary commands...
CVE-2021-27372
Realtek xPON RTL9601D SDK 1.9 stores passwords in plaintext which may allow attackers to possibly gain access to the device with root permissions via the build-in network monitoring tool and execute arbitrary commands...
CVE-2021-27372
Realtek xPON RTL9601D SDK 1.9 stores passwords in plaintext in the built‑in network monitoring tool, which may allow an attacker to gain root access to the device and execute arbitrary commands. Affected component: RTL9601D SDK 1.9. Root cause: plaintext password storage. Impact: remote compromis...
Realtek xPON RTL9601D SDK 代码问题漏洞
Realtek xPON RTL9601D SDK is an application chip from Realtek China. It is used for network communication. Realtek xPON RTL9601D SDK 1.9 suffers from a code issue vulnerability that originates from a plaintext storage password, which can be exploited by an attacker to potentially gain access to a...
Denial of Service Vulnerability in ZXHN F412 at ZTE CORPORATION
The ZXHN F412 is a simple xPON HGU terminal for FTTH scenarios. A denial of service vulnerability exists in the ZXHN F412 of ZTE Corporation, which can be exploited by attackers to cause a denial of service attack...
Netlink XPON 1GE WiFi V2801RGW - Remote Command Execution Exploit
Exploit for hardware platform in category web applications Exploit Title: Netlink XPON 1GE WiFi V2801RGW - Remote Command Execution Google Dork: Not applicable Exploit Author: Seecko Das Vendor Homepage: https://www.crtindia.com/ Version: V3.3.0-190627 Tested on: Windows 10/Linux Kali CVE: N/A...
Netlink XPON 1GE WiFi V2801RGW Remote Command Execution
Exploit Title: Netlink XPON 1GE WiFi V2801RGW - Remote Command Execution Google Dork: Not applicable Date: 2020-05-13 Exploit Author: Seecko Das Vendor Homepage: https://www.crtindia.com/ Version: V3.3.0-190627 Tested on: Windows 10/Linux Kali CVE: N/A Exploit : curl -L -d...