Vulnerabilities > Adbglobal
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-14 | CVE-2015-0558 | Missing Encryption of Sensitive Data vulnerability in Adbglobal P.Dga4001N Firmware Pdgtefsp4.06L.6 The ADB (formerly Pirelli Broadband Solutions) P.DGA4001N router with firmware PDG_TEF_SP_4.06L.6, and possibly other routers, uses "1236790" and the MAC address to generate the WPA key. | 5.3 |
| 2018-10-09 | CVE-2018-7633 | Code Injection vulnerability in Adbglobal Epicentro 7.3.2 Code injection in the /ui/login form Language parameter in Epicentro E_7.3.2+ allows attackers to execute JavaScript code by making a user issue a manipulated POST request. | 9.8 |
| 2018-10-09 | CVE-2018-7632 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adbglobal Epicentro 7.3.2 Buffer Overflow in httpd in EpiCentro E_7.3.2+ allows attackers to cause a denial of service attack remotely via a specially crafted GET request with a leading "/" in the URL. | 7.5 |
| 2018-10-09 | CVE-2018-7631 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adbglobal Epicentro 7.3.2 Buffer Overflow in httpd in EpiCentro E_7.3.2+ allows attackers to execute code remotely via a specially crafted GET request without a leading "/" and without authentication. | 9.8 |
| 2018-07-06 | CVE-2018-13110 | Incorrect Permission Assignment for Critical Resource vulnerability in Adbglobal products All ADB broadband gateways / routers based on the Epicentro platform are affected by a privilege escalation vulnerability where attackers can gain access to the command line interface (CLI) if previously disabled by the ISP, escalate their privileges, and perform further attacks. | 7.5 |
| 2018-07-06 | CVE-2018-13109 | Incorrect Authorization vulnerability in Adbglobal products All ADB broadband gateways / routers based on the Epicentro platform are affected by an authorization bypass vulnerability where attackers are able to access and manipulate settings within the web interface that are forbidden to end users (e.g., by the ISP). | 7.5 |
| 2018-07-06 | CVE-2018-13108 | Unspecified vulnerability in Adbglobal products All ADB broadband gateways / routers based on the Epicentro platform are affected by a local root jailbreak vulnerability where attackers are able to gain root access on the device, and extract further information such as sensitive configuration data of the ISP (e.g., VoIP credentials) or attack the internal network of the ISP. | 7.8 |