Flamingo Xl Firmware

flamingo_xl_firmware

Vendor: Ateme • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-58338 1Ateme 1Flamingo Xl Firmware Jan 16, 2026 Dec 30, 2025 8.6 HIGH· v4 10.0 CRITICAL· v3 N/A· v2 Anevia Flamingo XL 3.2.9 contains a restricted shell vulnerability that allows remote attackers to escape the sandboxed environment through the traceroute command. Attackers can exploit the traceroute command to inject s...Show more Anevia Flamingo XL 3.2.9 contains a restricted shell vulnerability that allows remote attackers to escape the sandboxed environment through the traceroute command. Attackers can exploit the traceroute command to inject shell commands and gain full root access to the device by bypassing the restricted login environment.Show less
CVE-2023-53983 1Ateme 4Flamingo Xl Firmware Flamingo Xs FirmwareSoaplive+1 more Jan 16, 2026 Dec 30, 2025 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 Anevia Flamingo XL/XS 3.6.20 contains a critical vulnerability with weak default administrative credentials that can be easily guessed. Attackers can leverage these hard-coded credentials to gain full remote system contr...Show more Anevia Flamingo XL/XS 3.6.20 contains a critical vulnerability with weak default administrative credentials that can be easily guessed. Attackers can leverage these hard-coded credentials to gain full remote system control without complex authentication mechanisms.Show less
CVE-2023-36252 1Ateme 2Flamingo Xl Firmware Flamingo Xs Firmware Dec 3, 2024 Jun 26, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue in Ateme Flamingo XL v.3.6.20 and XS v.3.6.5 allows a remote authenticated attacker to execute arbitrary code and cause a denial of service via a the session expiration function.