Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apollotechnologiesinc momentum axel 720p vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv3
CVE-2018-12323
An issue exists on Momentum Axel 720P 5.1.8 devices. A password of EHLGVG is hard-coded for the root and admin accounts, which makes it easier for physically proximate malicious users to login at the console.
Apollotechnologiesinc Momentum Axel 720p
Apollotechnologiesinc Momentum Axel 720p Firmware 5.1.8
4.4
CVSSv3
CVE-2018-12261
An issue exists on Momentum Axel 720P 5.1.8 devices. All processes run as root.
Apollotechnologiesinc Momentum Axel 720p Firmware 5.1.8
6.8
CVSSv3
CVE-2018-12259
An issue exists on Momentum Axel 720P 5.1.8 devices. Root access can be obtained via UART pins without any restrictions, which leads to full system compromise.
Apollotechnologiesinc Momentum Axel 720p Firmware 5.1.8
6.7
CVSSv3
CVE-2018-12260
An issue exists on Momentum Axel 720P 5.1.8 devices. The root password can be obtained in cleartext by issuing the command 'showKey' from the root CLI. This password may be the same on all devices
Apollotechnologiesinc Momentum Axel 720p Firmware 5.1.8
6.8
CVSSv3
CVE-2018-12258
An issue exists on Momentum Axel 720P 5.1.8 devices. Custom Firmware Upgrade is possible via an SD Card. With physical access, an attacker can upgrade the firmware in under 60 seconds by inserting an SD card containing the firmware with name 'ezviz.dav' and rebooting.
Apollotechnologiesinc Momentum Axel 720p Firmware 5.1.8
4.4
CVSSv3
CVE-2018-12257
An issue exists on Momentum Axel 720P 5.1.8 devices. There is Authenticated Custom Firmware Upgrade via DNS Hijacking. An authenticated root user with CLI access is able to remotely upgrade firmware to a custom image due to lack of SSL validation by changing the nameservers in /e...
Apollotechnologiesinc Momentum Axel 720p Firmware 5.1.8
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started