Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nokia vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-41350
Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of insufficient measures to prevent multiple failed authentication attempts. An unauthenticated remote attacker can execute a crafted Javascript to expose captcha in page, making it very easy for bots to bypass the captcha check...
Nokia G-040w-q Firmware G040wqr201207
9.8
CVSSv3
CVE-2023-41351
Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of authentication bypass, which allows an unauthenticated remote malicious user to bypass the authentication mechanism to log in to the device by an alternative URL. This makes it possible for unauthenticated remote malicious us...
Nokia G-040w-q Firmware G040wqr201207
7.2
CVSSv3
CVE-2023-41352
Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of insufficient filtering for user input. A remote attacker with administrator privilege can exploit this vulnerability to perform a Command Injection attack to execute arbitrary commands, disrupt the system or terminate service...
Nokia G-040w-q Firmware G040wqr201207
8.8
CVSSv3
CVE-2023-41353
Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of weak password requirements. A remote attacker with regular user privilege can easily infer the administrator password from system information after logging system, resulting in admin access and performing arbitrary system ope...
Nokia G-040w-q Firmware G040wqr201207
3.3
CVSSv3
CVE-2023-41354
Chunghwa Telecom NOKIA G-040W-Q Firewall function does not block ICMP TIMESTAMP requests by default, an unauthenticated remote attacker can exploit this vulnerability by sending a crafted package, resulting in partially sensitive information exposed to an actor.
Nokia G-040w-q Firmware G040wqr201207
9.8
CVSSv3
CVE-2023-41355
Chunghwa Telecom NOKIA G-040W-Q Firewall function has a vulnerability of input validation for ICMP redirect messages. An unauthenticated remote attacker can exploit this vulnerability by sending a crafted package to modify the network routing table, resulting in a denial of servi...
Nokia G-040w-q Firmware G040wqr201207
4.8
CVSSv3
CVE-2021-30003
An issue exists on Nokia G-120W-F 3FE46606AGAB91 devices. There is Stored XSS in the administrative interface via urlfilter.cgi?add url_address.
Nokia G-120w-f Firmware 3fe46606agab91
8.8
CVSSv3
CVE-2019-3921
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, authenticated malicious user to /GponForm/usb_Form?script/. An attacker can leverage this vulnerability to potential...
Nokia I-240w-q Gpon Ont Firmware 3fe54567bozj19
9.8
CVSSv3
CVE-2019-3922
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, unauthenticated malicious user to /GponForm/fsetup_Form. An attacker can leverage this vulnerability to potentially ...
Nokia I-240w-q Gpon Ont Firmware 3fe54567bozj19
4.8
CVSSv3
CVE-2022-30903
Nokia "G-2425G-A" Bharti Airtel Routers Hardware version "3FE48299DEAA" Software Version "3FE49362IJHK42" is vulnerable to Cross-Site Scripting (XSS) via the admin->Maintenance>Device Management.
Nokia G-2425g-a Firmware 3fe49362ijhk42
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »