Etl3100 Firmware

etl3100_firmware

Vendor: Eurotel • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-6930 1Eurotel 1Etl3100 Firmware Nov 21, 2024 Dec 19, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 EuroTel ETL3100 versions v01c01 and v01x37 suffer from an unauthenticated configuration and log download vulnerability. This enables the attacker to disclose sensitive information and assist in authentication by...Show more EuroTel ETL3100 versions v01c01 and v01x37 suffer from an unauthenticated configuration and log download vulnerability. This enables the attacker to disclose sensitive information and assist in authentication bypass, privilege escalation, and full system access. Show less
CVE-2023-6929 1Eurotel 1Etl3100 Firmware Nov 21, 2024 Dec 19, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 EuroTel ETL3100 versions v01c01 and v01x37 are vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vuln...Show more EuroTel ETL3100 versions v01c01 and v01x37 are vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers can bypass authorization, access the hidden resources on the system, and execute privileged functionalities. Show less
CVE-2023-6928 1Eurotel 1Etl3100 Firmware Nov 21, 2024 Dec 19, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 EuroTel ETL3100 versions v01c01 and v01x37 does not limit the number of attempts to guess administrative credentials in remote password attacks to gain full control of the system.