Vulnerabilities > Askey
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-26 | CVE-2022-47040 | Unspecified vulnerability in Askey Rtf3505Vw-N1 Firmware Brsvg000R3505Vmn1001S327 An issue in ASKEY router RTF3505VW-N1 BR_SV_g000_R3505VMN1001_s32_7 allows attackers to escalate privileges via running the tcpdump command after placing a crafted file in the /tmp directory and sending crafted packets through port 80. | 7.8 |
| 2021-03-26 | CVE-2020-28695 | OS Command Injection vulnerability in Askey Rtf3505Vw-N1 BR SV G000 R3505Vwn1001 S32 7 Firmware Askey Fiber Router RTF3505VW-N1 BR_SV_g000_R3505VWN1001_s32_7 devices allow Remote Code Execution and retrieval of admin credentials to log into the Dashboard or login via SSH, leading to code execution as root. | 8.8 |
| 2020-12-11 | CVE-2020-15357 | OS Command Injection vulnerability in Askey Ap5100W Firmware 1.01.097 Network Analysis functionality in Askey AP5100W_Dual_SIG_1.01.097 and all prior versions allows remote attackers to execute arbitrary commands via a shell metacharacter in the ping, traceroute, or route options. | 9.8 |
| 2020-12-11 | CVE-2020-15023 | Use of Insufficiently Random Values vulnerability in Askey Ap5100W Firmware 1.01.097 Askey AP5100W devices through AP5100W_Dual_SIG_1.01.097 are affected by WPS PIN offline brute-force cracking. | 5.9 |
| 2020-12-10 | CVE-2020-26201 | Weak Password Requirements vulnerability in Askey Ap5100W Firmware 1.01.097 Askey AP5100W_Dual_SIG_1.01.097 and all prior versions use a weak password at the Operating System (rlx-linux) level. | 9.8 |
| 2020-02-13 | CVE-2020-8614 | Improper Input Validation vulnerability in Askey Ap4000W Firmware Tdcv1.01.003 An issue was discovered on Askey AP4000W TDC_V1.01.003 devices. | 9.8 |