Initialization of a resource with an insecure default vulnerability in FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. allows a remote unauthenticated attacker to access telnet service unlimitedly.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HCenturysys Futurenet Nxr 1200
HWCenturysyswszystkie wersjeCenturysys Futurenet Nxr 1200 Firmware
OSCenturysyswszystkie wersjeCenturysys Futurenet Nxr 120\/c
HWCenturysyswszystkie wersjeCenturysys Futurenet Nxr 120\/c Firmware
OSCenturysyswszystkie wersjeCenturysys Futurenet Nxr 125\/cx Firmware
OSCenturysyswszystkie wersjeCenturysys Futurenet Nxr 1300 Firmware
OSCenturysys< 7.4.10Centurysys Futurenet Nxr 130\/c
HWCenturysyswszystkie wersjeCenturysys Futurenet Nxr 130\/c Firmware
OSCenturysyswszystkie wersjeCenturysys Futurenet Nxr 155\/c Firmware
OSCenturysyswszystkie wersjeCenturysys Futurenet Nxr 160\/lw
HWCenturysyswszystkie wersjeCenturysys Futurenet Nxr 160\/lw Firmware
OSCenturysys< 21.8.4Centurysys Futurenet Nxr 230\/c
HWCenturysyswszystkie wersjeCenturysys Futurenet Nxr 230\/c Firmware
OSCenturysys< 5.30.13Centurysys Futurenet Nxr 350\/c
HWCenturysyswszystkie wersjeCenturysys Futurenet Nxr 350\/c Firmware
OSCenturysys< 5.30.9cCenturysys Futurenet Nxr 530
HWCenturysyswszystkie wersjeCenturysys Futurenet Nxr 530 Firmware
OSCenturysys< 21.11.14Centurysys Futurenet Nxr 610x Firmware
OSCenturysys< 21.14.11cCenturysys Futurenet Nxr 650 Firmware
OSCenturysys< 21.16.2Centurysys Futurenet Nxr G050 Firmware
OSCenturysys< 21.12.10Centurysys Futurenet Nxr G060 Firmware
OSCenturysys< 21.15.6Centurysys Futurenet Nxr G100 Firmware
OSCenturysys< 6.23.11Centurysys Futurenet Nxr G110 Firmware
OSCenturysys< 21.7.32Centurysys Futurenet Nxr G120 Firmware
OSCenturysys< 21.15.2cCenturysys Futurenet Nxr G180\/l Ca
HWCenturysyswszystkie wersjeCenturysys Futurenet Nxr G180\/l Ca Firmware
OSCenturysys< 21.7.28cCenturysys Futurenet Nxr G200 Firmware
OSCenturysys< 9.12.16Centurysys Futurenet Vxr X64
OSCenturysys< 21.7.32Centurysys Futurenet Vxr X86
OSCenturysys< 10.1.5Centurysys Futurenet Wxr 250
HWCenturysyswszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
Related vulnerabilities
CVE-2024-36491CRITICAL9.8PL ✓ten sam produkt
Command Injection w urządzeniach FutureNet NXR/VXR/WXR (Century Systems)
CVE-2024-36475HIGH8.8ten sam produkt
FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. contain an active debug ...
CVE-2008-6449MEDIUM4.0ten sam vendor
Cross-site request forgery (CSRF) vulnerability in multiple Century Systems routers including XR-410 before 1....