Vulnerabilities > Motorola
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-31 | CVE-2022-4002 | Command Injection vulnerability in Motorola Q14 Firmware A command injection vulnerability could allow an authenticated user to execute operating system commands as root via a specially crafted API request. | 7.2 |
| 2024-07-31 | CVE-2022-4003 | Unspecified vulnerability in Motorola Q14 Firmware A denial-of-service vulnerability could allow an authenticated user to trigger an internal service restart via a specially crafted API request. | 6.5 |
| 2024-06-13 | CVE-2024-38279 | Missing Authentication for Critical Function vulnerability in Motorola Vigilant Fixed LPR Coms BOX Firmware The affected product is vulnerable to an attacker modifying the bootloader by using custom arguments to bypass authentication and gain access to the file system and obtain password hashes. | 4.6 |
| 2024-06-13 | CVE-2024-38280 | Cleartext Storage of Sensitive Information vulnerability in Motorola Vigilant Fixed LPR Coms BOX Firmware An unauthorized user is able to gain access to sensitive data, including credentials, by physically retrieving the hard disk of the product as the data is stored in clear text. | 4.6 |
| 2024-06-13 | CVE-2024-38281 | Use of Hard-coded Credentials vulnerability in Motorola Vigilant Fixed LPR Coms BOX Firmware An attacker can access the maintenance console using hard coded credentials for a hidden wireless network on the device. | 9.8 |
| 2024-02-12 | CVE-2024-25360 | Unspecified vulnerability in Motorola Cx2L Firmware 1.0.1 A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the SystemWizardStatus component via sending a crafted request to device_web_ip. | 5.3 |
| 2024-01-26 | CVE-2024-23626 | Command Injection vulnerability in Motorola Mr2600 Firmware A command injection vulnerability exists in the ‘SaveSysLogParams’ parameter of the Motorola MR2600. | 8.8 |
| 2024-01-26 | CVE-2024-23627 | Command Injection vulnerability in Motorola Mr2600 Firmware A command injection vulnerability exists in the 'SaveStaticRouteIPv4Params' parameter of the Motorola MR2600. | 8.8 |
| 2024-01-26 | CVE-2024-23628 | Command Injection vulnerability in Motorola Mr2600 Firmware A command injection vulnerability exists in the 'SaveStaticRouteIPv6Params' parameter of the Motorola MR2600. | 8.8 |
| 2024-01-26 | CVE-2024-23629 | Improper Authentication vulnerability in Motorola Mr2600 Firmware An authentication bypass vulnerability exists in the web component of the Motorola MR2600. | 7.5 |