Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gateway firmware vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-12656
A vulnerability in the IOx application environment of multiple Cisco platforms could allow an unauthenticated, remote malicious user to cause the IOx web server to stop processing HTTPS requests, resulting in a denial of service (DoS) condition. The vulnerability is due to a Tran...
Cisco Ios 1.8.0
Cisco Ios 1.6.0.0
Cisco Industrial Ethernet 2000 Series Firmware 15.2\\(6\\)e
Cisco Ic3000 Firmware -
Cisco Ie 4000 Firmware -
Cisco Cgr 1000 Firmware -
Cisco Ir510 Wpan Firmware -
6.1
CVSSv3
CVE-2019-5985
Cross-site scripting vulnerability in Hikari Denwa router/Home GateWay (Hikari Denwa router/Home GateWay provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION PR-S300NE/RT-S300NE/RV-S340NE firmware version Ver. 19.41 and previous versions, PR-S300HI/RT-S300HI/RV-S340HI firm...
Ntt-east Pr-s300ne Firmware
Ntt-east Rt-s300ne Firmware
Ntt-east Rv-s340ne Firmware
Ntt-east Pr-s300hi Firmware
Ntt-east Rt-s300hi Firmware
Ntt-east Rv-s340hi Firmware
Ntt-east Pr-s300se Firmware
Ntt-east Rt-s300se Firmware
Ntt-east Rv-s340se Firmware
Ntt-east Pr-400ne Firmware
Ntt-east Rt-400ne Firmware
Ntt-east Rv-440ne Firmware
Ntt-east Pr-400ki Firmware
Ntt-east Rt-400ki Firmware
Ntt-east Rv-440ki Firmware
Ntt-east Pr-400mi Firmware
Ntt-east Rt-400mi Firmware
Ntt-east Rv-440mi Firmware
Ntt-east Pr-500ki Firmware
Ntt-east Rt-500ki Firmware
Ntt-east Rs-500ki Firmware
Ntt-east Pr-500mi Firmware
8.8
CVSSv3
CVE-2019-5986
Cross-site request forgery (CSRF) vulnerability in Hikari Denwa router/Home GateWay (Hikari Denwa router/Home GateWay provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION PR-S300NE/RT-S300NE/RV-S340NE firmware version Ver. 19.41 and previous versions, PR-S300HI/RT-S300HI/R...
Ntt-east Pr-s300ne Firmware
Ntt-east Rt-s300ne Firmware
Ntt-east Rv-s340ne Firmware
Ntt-east Pr-s300hi Firmware
Ntt-east Rt-s300hi Firmware
Ntt-east Rv-s340hi Firmware
Ntt-east Pr-s300se Firmware
Ntt-east Rt-s300se Firmware
Ntt-east Rv-s340se Firmware
Ntt-east Pr-400ne Firmware
Ntt-east Rt-400ne Firmware
Ntt-east Rv-440ne Firmware
Ntt-east Pr-400ki Firmware
Ntt-east Rt-400ki Firmware
Ntt-east Rv-440ki Firmware
Ntt-east Pr-400mi Firmware
Ntt-east Rt-400mi Firmware
Ntt-east Rv-440mi Firmware
Ntt-east Pr-500ki Firmware
Ntt-east Rt-500ki Firmware
Ntt-east Rs-500ki Firmware
Ntt-east Pr-500mi Firmware
NA
CVE-2001-1137
D-Link DI-704 Internet Gateway firmware earlier than V2.56b6 allows remote malicious users to cause a denial of service (reboot) via malformed IP datagram fragments.
D-link Dl-704 V2.56b5
1 EDB exploit
NA
CVE-2015-0930
The web interface on SerVision HVG Video Gateway devices with firmware prior to 2.2.26a100 has a hardcoded administrative password, which makes it easier for remote malicious users to obtain access via an HTTP session.
Servision Hvg Video Gateway Firmware
NA
CVE-2015-0929
time.htm in the web interface on SerVision HVG Video Gateway devices with firmware prior to 2.2.26a78 allows remote malicious users to bypass authentication and obtain administrative access by leveraging a cookie received in an HTTP response.
Servision Hvg Video Gateway Firmware
NA
CVE-2013-2820
The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote malicious users to reprogram the firmware via a replay attack using UDP ports 17336 and 17388.
Sierrawireless Raven X Ev-do Firmware 4221 4.0.11.003
Sierrawireless Raven X Ev-do Firmware 4228 4.0.11.003
Sierrawireless Airlink Mp Row -
Sierrawireless Airlink Mp Row Wifi -
Sierrawireless Airlink Mp Sprint -
Sierrawireless Airlink Mp Sprint Wifi -
Sierrawireless Airlink Mp Verizon -
Sierrawireless Airlink Mp Bell -
Sierrawireless Airlink Mp Telus -
Sierrawireless Airlink Mp Verizon Wifi -
Sierrawireless Pinpoint Xt -
Sierrawireless Airlink Mp At\\&t -
Sierrawireless Airlink Mp At\\&t Wifi -
Sierrawireless Raven Xt -
Sierrawireless Raven Xe -
Sierrawireless Raven X -
Sierrawireless Airlink Mp Bell Wifi -
Sierrawireless Airlink Mp Telus Wifi -
Sierrawireless Raven X Ev-do -
Sierrawireless Pinpoint X -
9.8
CVSSv3
CVE-2023-31446
In Cassia Gateway firmware XC1000_2.1.1.2303082218 and XC2000_2.1.1.2303090947, the queueUrl parameter in /bypass/config is not sanitized. This leads to injecting Bash code and executing it with root privileges on device startup.
Cassianetworks Xc1000 Firmware 2.1.1.2303082218
Cassianetworks Xc2000 Firmware 2.1.1.2303090947
1 Github repository
NA
CVE-2013-2819
The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote malicious users to install Trojan horse firmware by leveraging cleartext credentials in a crafted (1) update or (2) reprogramming action.
Sierrawireless Raven X Ev-do Firmware 4221 4.0.11.003
Sierrawireless Raven X Ev-do Firmware 4228 4.0.11.003
Sierrawireless Pinpoint Xt -
Sierrawireless Pinpoint X -
Sierrawireless Raven Xt -
Sierrawireless Raven Xe -
Sierrawireless Airlink Mp At\\&t -
Sierrawireless Airlink Mp Bell -
Sierrawireless Airlink Mp Sprint Wifi -
Sierrawireless Airlink Mp Verizon Wifi -
Sierrawireless Airlink Mp Telus -
Sierrawireless Airlink Mp Telus Wifi -
Sierrawireless Airlink Mp Row -
Sierrawireless Airlink Mp Row Wifi -
Sierrawireless Airlink Mp Sprint -
Sierrawireless Airlink Mp At\\&t Wifi -
Sierrawireless Airlink Mp Bell Wifi -
Sierrawireless Airlink Mp Verizon -
Sierrawireless Raven X Ev-do -
Sierrawireless Raven X -
NA
CVE-2007-6709
The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and previous versions firmware has "admin" as its default password for the "admin" account, which makes it easier for remote malicious users to obtain access.
Linksys Wag54gs
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »