Aztech

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-45600 1Aztech 1Wmb250ac Firmware Mar 17, 2025 Feb 22, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Aztech WMB250AC Mesh Routers Firmware Version 016 2020 devices improperly manage sessions, which allows remote attackers to bypass authentication in opportunistic circumstances and execute arbitrary commands with adminis...Show more Aztech WMB250AC Mesh Routers Firmware Version 016 2020 devices improperly manage sessions, which allows remote attackers to bypass authentication in opportunistic circumstances and execute arbitrary commands with administrator privileges by leveraging an existing web portal login.Show less
CVE-2022-45599 1Aztech 1Wmb250ac Firmware Mar 17, 2025 Feb 22, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Aztech WMB250AC Mesh Routers Firmware Version 016 2020 is vulnerable to PHP Type Juggling in file /var/www/login.php, allows attackers to gain escalated privileges only when specific conditions regarding a given accounts...Show more Aztech WMB250AC Mesh Routers Firmware Version 016 2020 is vulnerable to PHP Type Juggling in file /var/www/login.php, allows attackers to gain escalated privileges only when specific conditions regarding a given accounts hashed password.Show less
CVE-2014-6437 1Aztech 3Adsl Dsl5018en (1t1r) Firmware Dsl705e FirmwareDsl705eu Firmware Nov 21, 2024 Jan 12, 2018 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices allow remote attackers to obtain sensitive device configuration information via vectors involving the ROM file.
CVE-2014-6436 1Aztech 3Adsl Dsl5018en (1t1r) Firmware Dsl705e FirmwareDsl705eu Firmware Nov 21, 2024 Jan 12, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices improperly manage sessions, which allows remote attackers to bypass authentication in opportunistic circumstances and execute arbitrary commands with administra...Show more Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices improperly manage sessions, which allows remote attackers to bypass authentication in opportunistic circumstances and execute arbitrary commands with administrator privileges by leveraging an existing web portal login.Show less
CVE-2014-6435 1Aztech 3Adsl Dsl5018en (1t1r) Firmware Dsl705e FirmwareDsl705eu Firmware Nov 21, 2024 Jan 12, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 cgi-bin/AZ_Retrain.cgi in Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices does not check for authentication, which allows remote attackers to cause a denial of service (WAN connectivity reset) via a direct re...Show more cgi-bin/AZ_Retrain.cgi in Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices does not check for authentication, which allows remote attackers to cause a denial of service (WAN connectivity reset) via a direct request.Show less
CVE-2008-6588 1Aztech 1Adsl2/2+4 Port Router Apr 23, 2026 Apr 3, 2009 N/A· v4 N/A· v3 10.0 HIGH· v2 Aztech ADSL2/2+ 4-port router has a default "isp" account with a default "isp" password, which allows remote attackers to obtain access if this default is not changed.
CVE-2008-6554 1Aztech 1Adsl2/2+4 Port Router Apr 23, 2026 Mar 30, 2009 N/A· v4 N/A· v3 10.0 HIGH· v2 cgi-bin/script in Aztech ADSL2/2+ 4-port router 3.7.0 build 070426 allows remote attackers to execute arbitrary commands via shell metacharacters in the query string.
CVE-2007-4733 1Aztech 1Dsl 600eu Router Apr 23, 2026 Sep 6, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 The Aztech DSL600EU router, when WAN access to the web interface is disabled, does not properly block inbound traffic on TCP port 80, which allows remote attackers to connect to the web interface by guessing a TCP sequen...Show more The Aztech DSL600EU router, when WAN access to the web interface is disabled, does not properly block inbound traffic on TCP port 80, which allows remote attackers to connect to the web interface by guessing a TCP sequence number, possibly involving spoofing of an ARP packet, a related issue to CVE-1999-0077.Show less