Allied-telesis

Centrecom Ar260s Firmware

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2022-34869

  • EPSS 0.84%
  • Published 08.09.2022 08:15:08
  • Last modified 21.11.2024 07:10:20

Undocumented hidden command that can be executed from the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.

8.8

CVE-2022-35273

  • EPSS 3.45%
  • Published 08.09.2022 08:15:08
  • Last modified 21.11.2024 07:11:01

OS command injection vulnerability in GUI setting page of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.

8.8

CVE-2022-38094

  • EPSS 3.45%
  • Published 08.09.2022 08:15:08
  • Last modified 21.11.2024 07:15:46

OS command injection vulnerability in the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.

9.8

CVE-2022-38394

  • EPSS 1.75%
  • Published 08.09.2022 08:15:08
  • Last modified 21.11.2024 07:16:23

Use of hard-coded credentials for the telnet server of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote unauthenticated attacker to execute an arbitrary OS command.