Vulnerabilities > Motorola

DATE CVE VULNERABILITY TITLE RISK
2021-08-17 CVE-2021-3459 OS Command Injection vulnerability in Motorola Mm1000 Firmware
A privilege escalation vulnerability was reported in the MM1000 device configuration web server, which could allow privileged shell access and/or arbitrary privileged commands to be executed on the adapter.
local
low complexity
motorola CWE-78
7.2
2021-08-17 CVE-2021-3458 Improper Authentication vulnerability in Motorola Mm1000 Firmware
The Motorola MM1000 device configuration portal can be accessed without authentication, which could allow adapter settings to be modified.
local
low complexity
motorola CWE-287
2.1
2021-07-21 CVE-2020-21937 Command Injection vulnerability in Motorola CX2 Firmware 1.0.2
An command injection vulnerability in HNAP1/SetWLanApcliSettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary system commands.
network
low complexity
motorola CWE-77
critical
10.0
2021-07-21 CVE-2020-21936 Missing Authentication for Critical Function vulnerability in Motorola CX2 Firmware 1.0.2
An issue in HNAP1/GetMultipleHNAPs of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to access the components GetStationSettings, GetWebsiteFilterSettings and GetNetworkSettings without authentication.
network
low complexity
motorola CWE-306
5.0
2021-07-21 CVE-2020-21935 Command Injection vulnerability in Motorola CX2 Firmware 1.0.2
A command injection vulnerability in HNAP1/GetNetworkTomographySettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary code.
network
low complexity
motorola CWE-77
7.5
2021-07-21 CVE-2020-21934 Improper Authentication vulnerability in Motorola CX2 Firmware 1.0.2
An issue was discovered in Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n where authentication to download the Syslog could be bypassed.
network
low complexity
motorola CWE-287
5.0
2021-07-21 CVE-2020-21933 Information Exposure Through Log Files vulnerability in Motorola CX2 Firmware 1.0.2
An issue was discovered in Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n where the admin password and private key could be found in the log tar package.
network
low complexity
motorola CWE-532
5.0
2021-07-21 CVE-2020-21932 Improper Authentication vulnerability in Motorola CX2 Firmware 1.0.2
A vulnerability in /Login.html of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to bypass login and obtain a partially authorized token and uid.
network
low complexity
motorola CWE-287
5.0
2020-03-23 CVE-2020-10874 Information Exposure vulnerability in Motorola products
Motorola FX9500 devices allow remote attackers to read database files.
network
low complexity
motorola CWE-200
5.0
2019-09-12 CVE-2019-16257 Unspecified vulnerability in Motorola Firmware
Some Motorola devices include the SIMalliance Toolbox Browser (aka S@T Browser) on the UICC, which might allow remote attackers to retrieve location and IMEI information, or retrieve other data or execute certain commands, via SIM Toolkit (STK) instructions in an SMS message, aka Simjacker.
network
low complexity
motorola
7.5