3 matches found
CVE-2017-5137
CVE-2017-5137 affects TalariaX SendQuick Entera and Avera devices prior to version 2HF16. Multiple sources (NVD, CNVD, PT-Security) describe an unauthenticated attacker being able to request and download SMS logs without credentials, indicating an authentication bypass in the SMS-logs access path...
CVE-2016-10098
TalariaX SendQuick Entera and Avera devices before 2HF16 are affected by multiple Command Injection vulnerabilities that allow an attacker to execute arbitrary system commands. Affected products: SendQuick Entera (web-based server management) and Avera (plug‑and‑play network monitoring). Root cau...
CVE-2017-5136
CVE-2017-5136 affects SendQuick Entera and Avera devices pre-2HF16. The issue is improper access-control validation on requests, enabling an attacker to shut down the system. Versions prior to 2HF16 are vulnerable; the recommended fix is to upgrade to 2HF16 or later. Public details come from CNVD...