- EPSS 0.67%
- Published 09.01.2019 23:29:01
- Last modified 21.11.2024 03:38:38
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via import.cgi encKey parameter.
- EPSS 0.59%
- Published 09.01.2019 23:29:01
- Last modified 21.11.2024 03:38:38
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via tools_firmware.cgi date parameter, time parameter, and offset parameter.
CVE-2018-0640
- EPSS 2.04%
- Published 09.01.2019 23:29:01
- Last modified 21.11.2024 03:38:38
Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via netWizard.cgi date parameter, time parameter, and offset parameter.
CVE-2018-0641
- EPSS 2.04%
- Published 09.01.2019 23:29:01
- Last modified 21.11.2024 03:38:38
Buffer overflow in Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary code via tools_system.cgi date parameter, time parameter, and offset parameter.
- EPSS 0.59%
- Published 09.01.2019 23:29:00
- Last modified 21.11.2024 03:38:37
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter or bootmode parameter of a certain URL.
- EPSS 0.59%
- Published 09.01.2019 23:29:00
- Last modified 21.11.2024 03:38:38
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via filename parameter.
- EPSS 0.59%
- Published 09.01.2019 23:29:00
- Last modified 21.11.2024 03:38:38
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via FactoryPassword parameter of a certain URL, different URL from CVE-2018-0634.
- EPSS 0.67%
- Published 09.01.2019 23:29:00
- Last modified 21.11.2024 03:38:38
Aterm HC100RC Ver1.0.1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via export.cgi encKey parameter.