Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
axesstel vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2318
The Axesstel MV 410R allows remote malicious users to cause a denial of service via a flood of SYN packets, a related issue to CVE-1999-0116.
Axesstel Mv 410r
NA
CVE-2009-2321
cgi-bin/sysconf.cgi on the Axesstel MV 410R allows remote malicious users to cause a denial of service (configuration reset) via a RESTORE=RESTORE query string.
Axesstel Mv 410r
NA
CVE-2009-2322
Cross-site scripting (XSS) vulnerability in cgi-bin/sysconf.cgi on the Axesstel MV 410R allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Axesstel Mv 410r
NA
CVE-2009-2317
The Axesstel MV 410R has a certain default administrator password, and does not force a password change, which makes it easier for remote malicious users to obtain access.
Axesstel Mv 410r
NA
CVE-2009-2319
The default configuration of the Wi-Fi component on the Axesstel MV 410R does not use encryption, which makes it easier for remote malicious users to obtain sensitive information by sniffing the network.
Axesstel Mv 410r
NA
CVE-2009-2320
The web interface on the Axesstel MV 410R relies on client-side JavaScript code to validate input, which allows remote malicious users to send crafted data, and possibly have unspecified other impact, via a client that does not process JavaScript.
Axesstel Mv 410r
NA
CVE-2009-2323
The web interface on the Axesstel MV 410R redirects users back to the referring page after execution of some CGI scripts, which makes it easier for remote malicious users to avoid detection of cross-site request forgery (CSRF) attacks, as demonstrated by a redirect from the cgi-b...
Axesstel Mv 410r
5.4
CVSSv3
CVE-2017-13724
On the Axesstel MU553S MU55XS-V1.14, there is a Stored Cross Site Scripting vulnerability in the APN parameter under the "Basic Settings" page.
Axesstel Mu553s Firmware Mu553s-v1.14
NA
CVE-2008-3411
The Axesstel AXW-D800 modem with D2_ETH_109_01_VEBR Jun-14-2006 software does not require authentication for (1) etc/config/System.html, (2) etc/config/Network.html, (3) etc/config/Security.html, (4) cgi-bin/sysconf.cgi, and (5) cgi-bin/route.cgi, which allows remote malicious us...
Axesstel Akw-d800 D2 Eth 109 01 Vebr
8.8
CVSSv3
CVE-2017-11350
Cross-Site Request Forgery (CSRF) exists in cgi-bin/ConfigSet on Axesstel MU553S MU55XS-V1.14 devices.
Axesstel Mu553s Firmware Mu553s-v1.14
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »