Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sagemcom vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv2
CVE-2013-5219
Directory traversal vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote malicious users to read arbitrary files via a .. (dot dot) in a URI, as demonstrated by a request for /etc/passwd.
Hot Hotbox Router Firmware 2.1.11
Hot Hotbox Router -
1 EDB exploit
3.3
CVSSv2
CVE-2013-5037
The HOT HOTBOX router with software 2.1.11 has a default WPS PIN of 12345670, which makes it easier for remote malicious users to obtain the WPA or WPA2 pre-shared key via EAP messages.
Hot Hotbox Router Firmware 2.1.11
Hot Hotbox Router -
1 EDB exploit
5.8
CVSSv2
CVE-2013-5038
The HOT HOTBOX router with software 2.1.11 allows remote malicious users to bypass authentication by configuring a source IP address that had previously been used for an authenticated session.
Hot Hotbox Router Firmware 2.1.11
Hot Hotbox Router -
1 EDB exploit
2.9
CVSSv2
CVE-2013-5218
Cross-site scripting (XSS) vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote malicious users to inject arbitrary web script or HTML via a crafted DHCP Host Name option, which is not properly handled during rendering of the DHCP table in wlanAccess.asp.
Hot Hotbox Router Firmware 2.1.11
Hot Hotbox Router -
1 EDB exploit
6.1
CVSSv2
CVE-2013-5220
goform/login on the HOT HOTBOX router with software 2.1.11 allows remote malicious users to cause a denial of service (device crash) via crafted HTTP POST data.
Hot Hotbox Router Firmware 2.1.11
Hot Hotbox Router -
1 EDB exploit
NA
CVE-2024-1623
Insufficient session timeout vulnerability in the FAST3686 V2 Vodafone router from Sagemcom. This vulnerability could allow a local malicious user to access the administration panel without requiring login credentials. This vulnerability is possible because the 'Login.asp an...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2