Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adsl firmware vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-12773
A security misconfiguration vulnerability exists in the SDK of some Realtek ADSL/PON Modem SoC firmware, which allows attackers using a default password to execute arbitrary commands remotely via the build-in network monitoring tool.
Realtek Adsl Router Soc Firmware -
NA
CVE-2001-1484
Alcatel ADSL modems allow remote malicious users to access the Trivial File Transfer Protocol (TFTP) to modify firmware and configuration via a bounce attack from a system on the local area network (LAN) side, which is allowed to access TFTP without authentication.
Alcatel Speed Touch Adsl Modem Home
Alcatel Adsl Modem 1000
NA
CVE-2002-2133
Telindus 1100 ASDL router running firmware 6.0.x uses weak encryption for UDP session traffic, which allows remote malicious users to gain unauthorized access by sniffing and decrypting the administrative password.
Telindus 1120 Adsl Router 6.0.21b Firmware
NA
CVE-2004-2045
The HTTP administration interface on Conceptronic CADSLR1 ADSL router running firmware 3.04n allows remote malicious users to cause a denial of service (device reboot) via an HTTP request with a long username.
Conceptronic Cadslr1 Adsl Router 3.04n
1 EDB exploit
NA
CVE-2006-3561
BT Voyager 2091 Wireless firmware 2.21.05.08m_A2pB018c1.d16d and previous versions, and 3.01m and previous versions, allow remote malicious users to bypass the authentication process and gain sensitive information, such as configuration information via (1) /btvoyager_getconfig.sh...
Bt Voyager 2091 Wireless Adsl Router
1 EDB exploit
NA
CVE-2006-3929
Cross-site scripting (XSS) vulnerability in the Forms/rpSysAdmin script on the Zyxel Prestige 660H-61 ADSL Router running firmware 3.40(PT.0)b32 allows remote malicious users to inject arbitrary web script or HTML via hex-encoded values in the a parameter.
Zyxel Prestige 660h-61 Firmware 3.40 Pt.0 B32
1 EDB exploit
NA
CVE-2012-1308
Cross-site request forgery (CSRF) vulnerability in redpass.cgi in D-Link DSL-2640B Firmware EU_4.00 allows remote malicious users to hijack the authentication of administrators for requests that change the administrator password via the sysPassword parameter.
Dlink Dsl-2640b Firmware 4.00
Dlink Dsl-2640b -
1 EDB exploit
NA
CVE-2014-1982
The administrative interface in Allied Telesis AT-RG634A ADSL Broadband router 3.3+, iMG624A firmware 3.5, iMG616LH firmware 2.4, and iMG646BD firmware 3.5 allows remote malicious users to gain privileges and execute arbitrary commands via a direct request to cli.html.
Alliedtelesis Img646bd Firmware 3.5
Alliedtelesis Img646bd -
Alliedtelesis At-rg634a Firmware 3.3\\+
Alliedtelesis At-rg634a -
Alliedtelesis Img624a Firmware 3.5
Alliedtelesis Img624a -
Alliedtelesis Img616lh Firmware \\+2.4
Alliedtelesis Img616lh -
1 EDB exploit
NA
CVE-2007-3574
Multiple cross-site scripting (XSS) vulnerabilities in setup.cgi on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.00.06 firmware allow remote malicious users to inject arbitrary web script or HTML via the (1) c4_trap_ip_, (2) devname, (3) snmp_getcomm, or (4) snmp_setc...
Linksys Wag54gs 1.00.06
1 EDB exploit
NA
CVE-2013-2271
The D-Link DSL-2740B Gateway with firmware EU_1.0, when an active administrator session exists, allows remote malicious users to bypass authentication and gain administrator access via a request to login.cgi.
Dlink Dsl-2740b Firmware -
Dlink Dsl-2740b -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »