Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
multitech vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2003-0126
The web interface for SOHO Routefinder 550 firmware 4.63 and previous versions, and possibly later versions, has a default "admin" account with a blank password, which could allow attackers on the LAN side to conduct unauthorized activities.
Multitech Routefinder 550 Vpn
Multitech Routefinder 550 Vpn 4.64 Beta
NA
CVE-2023-25201
Cross Site Request Forgery (CSRF) vulnerability in MultiTech Conduit AP MTCAP2-L4E1 MTCAP2-L4E1-868-042A v.6.0.0 allows a remote malicious user to execute arbitrary code via a crafted script upload.
Multitech Conduit Ap Mtcap2-l4e1-868-042a Firmware 6.0.0
Multitech Conduit Ap Mtcap2-l4e1 Firmware 6.0.0
5
CVSSv2
CVE-2018-17562
Multi-Tech FaxFinder prior to 5.1.6 has SQL Injection via a status/call_details?oid= URI, allowing an malicious user to extract the underlying database schema to further disclose other fax server information through different injection points.
Multitech Faxfinder
10
CVSSv2
CVE-2016-10512
MultiTech FaxFinder prior to 4.1.2 stores Passwords unencrypted for maintaining the test connectivity function of its LDAP configuration. These credentials are retrieved by the system when the LDAP configuration page is opened and are embedded directly into the HTML source code i...
Multitech Faxfinder -
5
CVSSv2
CVE-2003-0125
Buffer overflow in the web interface for SOHO Routefinder 550 before firmware 4.63 allows remote malicious users to cause a denial of service (reboot) and execute arbitrary code via a long GET /OPTIONS value.
Multitech Routefinder 550 Vpn
1 EDB exploit
9
CVSSv2
CVE-2020-7594
MultiTech Conduit MTCDT-LVW2-24XX 1.4.17-ocea-13592 devices allow remote authenticated administrators to execute arbitrary OS commands by navigating to the Debug Options page and entering shell metacharacters in the interface JSON field of the ping function.
Multitech Conduit Mtcdt-lvw2-246a Firmware 1.4.17-ocea-13592
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started