Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alcatel vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-2018-6597
The Alcatel A30 device with a build fingerprint of TCL/5046G/MICKEY6US:7.0/NRD90M/J63:user/release-keys contains a hidden privilege escalation capability to achieve command execution as the root user. They have made modifications that allow a user with physical access to the devi...
Alcatel A30 Firmware 7.0
383
VMScore
CVE-2015-2804
The management web interface in Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400, and 6855 with firmware prior to 6.6.4.309.R01 and 6.6.5.x prior to 6.6.5.80.R02 generates weak session identifiers, which allows remote malicious users to hijack arbitrary sessions via a bru...
Alcatel-lucent Omniswitch Firmware
445
VMScore
CVE-2003-1108
The Session Initiation Protocol (SIP) implementation in Alcatel OmniPCX Enterprise 5.0 Lx allows remote malicious users to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.
Alcatel-lucent Omnipcx 5.0
668
VMScore
CVE-2007-2512
Alcatel-Lucent IP-Touch Telephone running OmniPCX Enterprise 7.0 and later enables the mini switch by default, which allows malicious users to gain access to the voice VLAN via daisy-chained systems.
Alcatel-lucent Omnipcx 7.0
552
VMScore
CVE-2002-0293
FTP service in Alcatel OmniPCX 4400 allows the "halt" user to gain root privileges by modifying root's .profile file.
Alcatel-lucent Omnipcx 4400
890
VMScore
CVE-2002-1691
Alcatel OmniPCX 4400 installs known user accounts and passwords in the /etc/password file by default, which allows remote malicious users to gain unauthorized access.
Alcatel-lucent Omnipcx 4400
1000
VMScore
CVE-2007-3010
masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server R7.1 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in the user parameter during a ping action.
Alcatel-lucent Omnipcx 7.1
3 EDB exploits
383
VMScore
CVE-2015-4587
Cross-site scripting (XSS) vulnerability in the Alcatel-Lucent CellPipe 7130 router with firmware 1.0.0.20h.HOL allows remote malicious users to inject arbitrary web script or HTML via the "Custom application" field in the "port triggering" menu.
Alcatel-lucent Cellpipe 7130 Router Firmware 1.0.0.20h.hol
445
VMScore
CVE-2002-0119
Alcatel Speed Touch Home ADSL Modem allows remote malicious users to cause a denial of service (reboot) via a network scan with unusual packets, such as nmap with OS detection.
Alcatel Speed Touch Home -
187
VMScore
CVE-2002-0294
Alcatel 4400 installs the /chetc/shutdown command with setgid privileges, which allows many different local users to shut down the system.
Alcatel-lucent Omnipcx 4400
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »