Sasabe Tetsuro

**Name of the Vulnerable Software and Affected Versions** WAB-I1750-PS versions 1.5.10 and earlier **Description** A missing authentication vulnerability exists in the Telnet function of the product. When the Telnet function is enabled, a remote attacker may login to the product without authentication and alter the product's settings. This allows attackers to fully compromise devices. As a mitigation measure, applying restrictive firewall rules can help minimize the risk of exploitation. **Recommendations** For WAB-I1750-PS versions 1.5.10 and earlier, urgently apply restrictive firewall rules to mitigate the risk until a patch is available. Consider disabling the Telnet function as a temporary workaround until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** WAPM-1166D versions 1.2.7 and earlier WAPM-APG600H versions 1.16.1 and earlier **Description** The issue allows remote attackers to bypass authentication and access the configuration interface. **Recommendations** For WAPM-1166D versions 1.2.7 and earlier, update to a version later than 1.2.7. For WAPM-APG600H versions 1.16.1 and earlier, update to a version later than 1.16.1.

**Name of the Vulnerable Software and Affected Versions** Corega CG-WLNCM4G devices (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, specifically traffic amplification, by sending crafted queries to an open DNS resolver. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.