CVE-2024-23630
- EPSS 0.12%
- Published 26.01.2024 00:15:12
- Last modified 21.11.2024 08:58:02
An arbitrary firmware upload vulnerability exists in the Motorola MR2600. An attacker can exploit this vulnerability to achieve code execution on the device. Authentication is required, however can be bypassed.
CVE-2024-23627
- EPSS 1.17%
- Published 26.01.2024 00:15:11
- Last modified 21.11.2024 08:58:02
A command injection vulnerability exists in the 'SaveStaticRouteIPv4Params' parameter of the Motorola MR2600. A remote attacker can exploit this vulnerability to achieve command execution. Authentication is required, however can be bypassed.
CVE-2024-23628
- EPSS 0.14%
- Published 26.01.2024 00:15:11
- Last modified 21.11.2024 08:58:02
A command injection vulnerability exists in the 'SaveStaticRouteIPv6Params' parameter of the Motorola MR2600. A remote attacker can exploit this vulnerability to achieve command execution. Authentication is required, however can be bypassed.
CVE-2024-23629
- EPSS 0.06%
- Published 26.01.2024 00:15:11
- Last modified 21.11.2024 08:58:02
An authentication bypass vulnerability exists in the web component of the Motorola MR2600. An attacker can exploit this vulnerability to access protected URLs and retrieve sensitive information.
CVE-2024-23626
- EPSS 1.17%
- Published 26.01.2024 00:15:10
- Last modified 21.11.2024 08:58:02
A command injection vulnerability exists in the ‘SaveSysLogParams’ parameter of the Motorola MR2600. A remote attacker can exploit this vulnerability to achieve command execution. Authentication is required, however can be bypassed.
CVE-2022-34885
- EPSS 0.09%
- Published 30.01.2023 22:15:11
- Last modified 21.11.2024 07:10:22
An improper input sanitization vulnerability in the Motorola MR2600 router could allow a local user with elevated permissions to execute arbitrary code.