Cc-Crack

Name of the Vulnerable Software and Affected Versions: Motorola CX2 router version 1.0.2 Build 20190508 Rel.97360n Description: A vulnerability in the /Login.html endpoint of the Motorola CX2 router allows attackers to bypass login and obtain a partially authorized token and `uid`. Recommendations: For version 1.0.2 Build 20190508 Rel.97360n, as a temporary workaround, consider restricting access to the /Login.html endpoint until a patch is available.

Name of the Vulnerable Software and Affected Versions: Motorola CX2 router CX version 1.0.2 Build 20190508 Rel.97360n Description: A command injection issue in the `HNAP1/GetNetworkTomographySettings` endpoint of the Motorola CX2 router allows attackers to execute arbitrary code. Recommendations: For version 1.0.2 Build 20190508 Rel.97360n, as a temporary workaround, consider restricting access to the `HNAP1/GetNetworkTomographySettings` endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Motorola CX2 router version 1.0.2 Build 20190508 Rel.97360n Description: The issue affects the HNAP1/GetMultipleHNAPs component, allowing attackers to access certain settings without authentication, including GetStationSettings, GetWebsiteFilterSettings, and GetNetworkSettings. Recommendations: For version 1.0.2 Build 20190508 Rel.97360n, consider restricting access to the HNAP1/GetMultipleHNAPs component until a fix is available. As a temporary workaround, limit the exposure of the router to the internet and only allow trusted devices to access the network settings. At the moment, there is no information about a newer version that contains a fix for this vulnerability.