Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
furuno vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2018-16590
FURUNO FELCOM 250 and 500 devices use only client-side JavaScript in login.js for authentication.
Furuno Felcom 250 Firmware -
Furuno Felcom 500 Firmware -
10
CVSSv2
CVE-2018-16591
FURUNO FELCOM 250 and 500 devices allow unauthenticated users to change the password for the Admin, Log and Service accounts, as well as the password for the protected "SMS" panel via /cgi-bin/sm_changepassword.cgi and /cgi-bin/sm_sms_changepasswd.cgi.
Furuno Felcom 250 Firmware -
Furuno Felcom 500 Firmware -
5
CVSSv2
CVE-2018-16705
FURUNO FELCOM 250 and 500 devices allow unauthenticated access to the xml/permission.xml file containing all of the system's usernames and passwords. This includes the Admin and Service user accounts and their unsalted MD5 hashes, as well as the SMS server password in cleart...
Furuno Felcom 250 Firmware -
Furuno Felcom 500 Firmware -
NA
CVE-2023-39429
Cross-site scripting vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to inject an arbitrary script via a crafted configuration. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and previous versions, ACERA...
Furunosystems Acera 1210 Firmware
Furunosystems Acera 1150i Firmware
Furunosystems Acera 1150w Firmware
Furunosystems Acera 1110 Firmware
Furunosystems Acera 1020 Firmware
Furunosystems Acera 1010 Firmware
Furunosystems Acera 950 Firmware
Furunosystems Acera 850f Firmware
Furunosystems Acera 900 Firmware
Furunosystems Acera 850m Firmware
Furunosystems Acera 810 Firmware
Furunosystems Acera 800st Firmware
NA
CVE-2023-41086
Cross-site request forgery (CSRF) vulnerability exists in FURUNO SYSTEMS wireless LAN access point devices. If a user views a malicious page while logged in, unintended operations may be performed. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and p...
Furunosystems Acera 1210 Firmware
Furunosystems Acera 1150i Firmware
Furunosystems Acera 1150w Firmware
Furunosystems Acera 1110 Firmware
Furunosystems Acera 1020 Firmware
Furunosystems Acera 1010 Firmware
Furunosystems Acera 950 Firmware
Furunosystems Acera 850f Firmware
Furunosystems Acera 900 Firmware
Furunosystems Acera 850m Firmware
Furunosystems Acera 810 Firmware
Furunosystems Acera 800st Firmware
NA
CVE-2023-39222
OS command injection vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command that is not intended to be executed from the web interface by sending a specially crafted request. Affected products and versions...
Furunosystems Acera 1310 Firmware
Furunosystems Acera 1320 Firmware
Furunosystems Acera 1210 Firmware
Furunosystems Acera 1150i Firmware
Furunosystems Acera 1150w Firmware
Furunosystems Acera 1110 Firmware
Furunosystems Acera 1020 Firmware
Furunosystems Acera 1010 Firmware
Furunosystems Acera 950 Firmware
Furunosystems Acera 850f Firmware
Furunosystems Acera 900 Firmware
Furunosystems Acera 850m Firmware
Furunosystems Acera 810 Firmware
Furunosystems Acera 800st Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started