Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alcatel vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-3809
Cross-site scripting (XSS) vulnerability in the management interface in Alcatel-Lucent 1830 Photonic Service Switch (PSS) 6.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the myurl parameter to menu/pop.html.
Nokia 1830 Photonic Service Switch-4 Firmware
Nokia 1830 Photonic Service Switch-16 Firmware
Nokia 1830 Photonic Service Switch-32 Firmware
10
CVSSv2
CVE-2019-3918
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 contains multiple hard coded credentials for the Telnet and SSH interfaces.
Nokia I-240w-q Gpon Ont Firmware 3fe54567bozj19
5
CVSSv2
CVE-2019-3917
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 allows a remote, unauthenticated malicious user to enable telnetd on the router via a crafted HTTP request.
Nokia I-240w-q Gpon Ont Firmware 3fe54567bozj19
6.9
CVSSv2
CVE-2021-31795
The PowerVR GPU kernel driver in pvrsrvkm.ko through 2021-04-24 for the Linux kernel, as used on Alcatel 1S phones, allows malicious users to overwrite heap memory via PhysmemNewRamBackedPMR.
6.5
CVSSv2
CVE-2019-3919
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to command injection via crafted HTTP request sent by a remote, authenticated malicious user to /GponForm/usb_restore_Form?script/.
Nokia I-240w-q Gpon Ont Firmware 3fe54567bozj19
6.5
CVSSv2
CVE-2019-3920
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to authenticated command injection via crafted HTTP request sent by a remote, authenticated malicious user to /GponForm/device_Form?script/.
Nokia I-240w-q Gpon Ont Firmware 3fe54567bozj19
7.5
CVSSv2
CVE-2019-7163
The web interface of Alcatel LINKZONE MW40-V-V1.0 MW40_LU_02.00_02 devices is vulnerable to an authentication bypass that allows an unauthenticated user to have access to the web interface without knowing the administrator's password.
Tcl Alcatel Linkzone Firmware Mw40-v-v1.0 Mw40 Lu 02.00 02
9
CVSSv2
CVE-2019-20048
An issue exists on Alcatel-Lucent OmniVista 8770 devices prior to 4.1.2. An authenticated remote attacker, with elevated privileges in the Web Directory component on port 389, may upload a PHP file to achieve Remote Code Execution as SYSTEM.
Al-enterprise Omnivista 8770
7.5
CVSSv2
CVE-2019-3922
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, unauthenticated malicious user to /GponForm/fsetup_Form. An attacker can leverage this vulnerability to potentially ...
Nokia I-240w-q Gpon Ont Firmware 3fe54567bozj19
6.5
CVSSv2
CVE-2019-3921
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, authenticated malicious user to /GponForm/usb_Form?script/. An attacker can leverage this vulnerability to potential...
Nokia I-240w-q Gpon Ont Firmware 3fe54567bozj19
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »