Motorola

M2 Firmware

10 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2019-12297

Exploit
  • EPSS 0.43%
  • Published 23.05.2019 14:29:07
  • Last modified 21.11.2024 04:22:34

An issue was discovered in scopd on Motorola routers CX2 1.01 and M2 1.01. There is a Use of an Externally Controlled Format String, reachable via TCP port 8010 or UDP port 8080.

9.8

CVE-2019-11320

Exploit
  • EPSS 0.43%
  • Published 18.04.2019 17:29:01
  • Last modified 21.11.2024 04:20:52

In Motorola CX2 1.01 and M2 1.01, users can access the router's /priv_mgt.html web page to launch telnetd, as demonstrated by the 192.168.51.1 address.

5.3

CVE-2019-11321

Exploit
  • EPSS 0.27%
  • Published 18.04.2019 17:29:01
  • Last modified 21.11.2024 04:20:52

An issue was discovered in Motorola CX2 1.01 and M2 1.01. The router opens TCP port 8010. Users can send hnap requests to this port without authentication to obtain information such as the MAC addresses of connected client devices.

9.8

CVE-2019-11322

Exploit
  • EPSS 4.52%
  • Published 18.04.2019 17:29:01
  • Last modified 21.11.2024 04:20:53

An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a command injection in the function startRmtAssist in hnap, which leads to remote code execution via shell metacharacters in a JSON value.

9.8

CVE-2019-11319

Exploit
  • EPSS 4.52%
  • Published 18.04.2019 17:29:00
  • Last modified 21.11.2024 04:20:52

An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a command injection in the function downloadFirmware in hnap, which leads to remote code execution via shell metacharacters in a JSON value.

10

CVE-2019-9119

Exploit
  • EPSS 9.27%
  • Published 07.03.2019 23:29:02
  • Last modified 21.11.2024 04:51:01

An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows att...

10

CVE-2019-9120

Exploit
  • EPSS 9.27%
  • Published 07.03.2019 23:29:02
  • Last modified 21.11.2024 04:51:01

An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows att...

10

CVE-2019-9121

  • EPSS 4%
  • Published 07.03.2019 23:29:02
  • Last modified 21.11.2024 04:51:01

An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows att...

10

CVE-2019-9117

Exploit
  • EPSS 9.27%
  • Published 07.03.2019 23:29:01
  • Last modified 21.11.2024 04:51:01

An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows att...

10

CVE-2019-9118

Exploit
  • EPSS 9.27%
  • Published 07.03.2019 23:29:01
  • Last modified 21.11.2024 04:51:01

An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows att...