Drmnsamoliu

#11777de 53,638
23.4CVSS total
Vulnerabilidades · 3
Alta
3
PT-2024-13498
7.2
2024-06-28
Synology · Synology Camera Firmware · CVE-2023-47802
**Nome do software vulnerável e versões afetadas** Versões do firmware da Synology Camera anteriores à 1.0.7-0298 **Descrição** Foi encontrada uma vulnerabilidade relacionada à neutralização inadequada de elementos especiais usados em um comando do sistema operacional na funcionalidade de bloqueio de IP, permitindo que usuários remotos autenticados com privilégios de administrador executem comandos arbitrários por meio de vetores não especificados. **Recomendações** Para versões anteriores à 1.0.7-0298, atualize para a versão 1.0.7-0298 ou posterior para resolver o problema.
PT-2018-17467
7.2
2018-03-10
Foxconn · Femto Ap-Fc4064-T · CVE-2018-6311
**Name of the Vulnerable Software and Affected Versions** Foxconn femtocell FEMTO AP-FC4064-T version AP GT B38 5.8.3lb15-W47 LTE Build 15 **Description** The issue allows an attacker to gain root access to the system via UART pins without any restrictions, leading to full system compromise and potential disclosure of user communications. **Recommendations** For Foxconn femtocell FEMTO AP-FC4064-T version AP GT B38 5.8.3lb15-W47 LTE Build 15, consider restricting physical access to the UART pins as a temporary mitigation measure until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2018-17468
9.0
2018-03-10
Foxconn · Femto Ap-Fc4064-T · CVE-2018-6312
**Name of the Vulnerable Software and Affected Versions** Foxconn femtocell FEMTO AP-FC4064-T version AP GT B38 5.8.3lb15-W47 LTE Build 15 **Description** A default weak password in a privileged account can be exploited to enable the TELNET service through the web interface, allowing root login without a password. This can lead to full system compromise and the disclosure of user communications. The `foxconn` account has an 8-character lowercase alphabetic default password. **Recommendations** For Foxconn femtocell FEMTO AP-FC4064-T version AP GT B38 5.8.3lb15-W47 LTE Build 15, change the default password of the `foxconn` account to a strong password to prevent unauthorized access. As a temporary workaround, consider disabling the TELNET service via the web interface until a secure configuration or patch is available. Restrict access to the web interface to minimize the risk of exploitation.