CVE-2024-50357
- EPSS 0.14%
- Veröffentlicht 29.11.2024 10:15:10
- Zuletzt bearbeitet 29.11.2024 10:15:10
FutureNet NXR series routers provided by Century Systems Co., Ltd. have REST-APIs, which are configured as disabled in the initial (factory default) configuration. But, REST-APIs are unexpectedly enabled when the affected product is powered up, provi...
CVE-2024-36475
- EPSS 0.51%
- Veröffentlicht 17.07.2024 09:15:03
- Zuletzt bearbeitet 21.11.2024 09:22:15
FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. contain an active debug code vulnerability. If a user who knows how to use the debug function logs in to the product, the debug function may be used and an arbitrar...
CVE-2024-36491
- EPSS 1.3%
- Veröffentlicht 17.07.2024 09:15:03
- Zuletzt bearbeitet 01.04.2025 05:15:43
FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. allow an administrative user to execute an arbitrary OS command, obtain and/or alter sensitive information, and cause a denial-of-service (DoS) condition.
CVE-2024-31070
- EPSS 2.07%
- Veröffentlicht 17.07.2024 09:15:02
- Zuletzt bearbeitet 21.11.2024 09:12:47
Initialization of a resource with an insecure default vulnerability in FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. allows a remote unauthenticated attacker to access telnet service unlimitedly.