leetsun/Hints

leetsun/Hints

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

Hidden Interfaces in IoT

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-25360 ↗	Feb 12, 2024Monday, 12 February 2024, 16:15	5.3 MEDIUM	—
A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the SystemWizardStatus component via sending a crafted request to device_web_ip.
CVE-2024-1431 ↗	Feb 11, 2024Sunday, 11 February 2024, 03:15	4.3 MEDIUM	3.3 LOW
A vulnerability was found in Netgear R7000 1.0.11.136_10.2.120 and classified as problematic. Affected by this issue is some unknown functionality of the file /debuginfo.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been disclosed to the public and may be used. VDB-253382 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-1430 ↗	Feb 11, 2024Sunday, 11 February 2024, 01:15	4.3 MEDIUM	3.3 LOW
A vulnerability has been found in Netgear R7000 1.0.11.136_10.2.120 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /currentsetting.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-1406 ↗	Feb 10, 2024Saturday, 10 February 2024, 08:15	4.3 MEDIUM	3.3 LOW
A vulnerability was found in Linksys WRT54GL 4.30.18. It has been declared as problematic. This vulnerability affects unknown code of the file /SysInfo1.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been disclosed to the public and may be used. VDB-253330 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-1405 ↗	Feb 10, 2024Saturday, 10 February 2024, 06:15	4.3 MEDIUM	3.3 LOW
A vulnerability was found in Linksys WRT54GL 4.30.18. It has been classified as problematic. This affects an unknown part of the file /wlaninfo.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been disclosed to the public and may be used. The identifier VDB-253329 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-1404 ↗	Feb 9, 2024Friday, 9 February 2024, 23:15	4.3 MEDIUM	3.3 LOW
A vulnerability was found in Linksys WRT54GL 4.30.18 and classified as problematic. Affected by this issue is some unknown functionality of the file /SysInfo.htm of the component Web Management Interface. The manipulation leads to information disclosure. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-253328. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.