Vulnerabilities > Motorola

DATE CVE VULNERABILITY TITLE RISK
2024-07-31 CVE-2022-4002 Command Injection vulnerability in Motorola Q14 Firmware
A command injection vulnerability could allow an authenticated user to execute operating system commands as root via a specially crafted API request.
network
low complexity
motorola CWE-77
7.2
2024-07-31 CVE-2022-4003 Unspecified vulnerability in Motorola Q14 Firmware
A denial-of-service vulnerability could allow an authenticated user to trigger an internal service restart via a specially crafted API request.
network
low complexity
motorola
6.5
2024-06-13 CVE-2024-38279 Missing Authentication for Critical Function vulnerability in Motorola Vigilant Fixed LPR Coms BOX Firmware
The affected product is vulnerable to an attacker modifying the bootloader by using custom arguments to bypass authentication and gain access to the file system and obtain password hashes.
low complexity
motorola CWE-306
4.6
2024-06-13 CVE-2024-38280 Cleartext Storage of Sensitive Information vulnerability in Motorola Vigilant Fixed LPR Coms BOX Firmware
An unauthorized user is able to gain access to sensitive data, including credentials, by physically retrieving the hard disk of the product as the data is stored in clear text.
low complexity
motorola CWE-312
4.6
2024-06-13 CVE-2024-38281 Unspecified vulnerability in Motorola Vigilant Fixed LPR Coms BOX Firmware
An attacker can access the maintenance console using hard coded credentials for a hidden wireless network on the device.
network
low complexity
motorola
critical
9.8
2024-02-12 CVE-2024-25360 Unspecified vulnerability in Motorola Cx2L Firmware 1.0.1
A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the SystemWizardStatus component via sending a crafted request to device_web_ip.
network
low complexity
motorola
5.3
2024-01-26 CVE-2024-23626 Command Injection vulnerability in Motorola Mr2600 Firmware
A command injection vulnerability exists in the ‘SaveSysLogParams’ parameter of the Motorola MR2600.
network
low complexity
motorola CWE-77
8.8
2024-01-26 CVE-2024-23627 Command Injection vulnerability in Motorola Mr2600 Firmware
A command injection vulnerability exists in the 'SaveStaticRouteIPv4Params' parameter of the Motorola MR2600.
network
low complexity
motorola CWE-77
8.8
2024-01-26 CVE-2024-23628 Command Injection vulnerability in Motorola Mr2600 Firmware
A command injection vulnerability exists in the 'SaveStaticRouteIPv6Params' parameter of the Motorola MR2600.
network
low complexity
motorola CWE-77
8.8
2024-01-26 CVE-2024-23629 Improper Authentication vulnerability in Motorola Mr2600 Firmware
An authentication bypass vulnerability exists in the web component of the Motorola MR2600.
network
low complexity
motorola CWE-287
7.5