Vulnerabilities > Actiontec

DATE	CVE	VULNERABILITY TITLE	RISK
2018-12-06	CVE-2018-19922	Cross-site Scripting vulnerability in Actiontec C1000A Firmware Persistent Cross-Site Scripting (XSS) in the advancedsetup_websiteblocking.html Website Blocking page of the Actiontec C1000A router with firmware through CAC004-31.30L.95 allows a remote attacker to inject arbitrary HTML into the Website Blocking page by inserting arbitrary HTML into the 'TodUrlAdd' URL parameter in a /urlfilter.cmd POST request. network actiontec CWE-79	4.3
2018-05-14	CVE-2018-10252	Session Fixation vulnerability in Actiontec Wcb6200Q Firmware An issue was discovered on Actiontec WCB6200Q before 1.1.10.20a devices. network actiontec CWE-384	6.8
2015-08-23	CVE-2015-2905	Cross-Site Request Forgery (CSRF) vulnerability in Actiontec Ncs01 Firmware Cross-site request forgery (CSRF) vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote attackers to hijack the authentication or intranet connectivity of arbitrary users. network actiontec CWE-352	6.8
2015-08-23	CVE-2015-2904	Unspecified vulnerability in Actiontec Ncs01 Firmware Actiontec GT784WN modems with firmware before NCS01-1.0.13 have hardcoded credentials, which makes it easier for remote attackers to obtain root access by connecting to the web administration interface. low complexity actiontec	8.3

Vulnerabilities > Actiontec {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Actiontec"}]}