Vulnerabilities > Motorola > High

DATE CVE VULNERABILITY TITLE RISK
2024-07-31 CVE-2022-4002 Command Injection vulnerability in Motorola Q14 Firmware
A command injection vulnerability could allow an authenticated user to execute operating system commands as root via a specially crafted API request.
network
low complexity
motorola CWE-77
7.2
2024-01-26 CVE-2024-23626 Command Injection vulnerability in Motorola Mr2600 Firmware
A command injection vulnerability exists in the ‘SaveSysLogParams’ parameter of the Motorola MR2600.
network
low complexity
motorola CWE-77
8.8
2024-01-26 CVE-2024-23627 Command Injection vulnerability in Motorola Mr2600 Firmware
A command injection vulnerability exists in the 'SaveStaticRouteIPv4Params' parameter of the Motorola MR2600.
network
low complexity
motorola CWE-77
8.8
2024-01-26 CVE-2024-23628 Command Injection vulnerability in Motorola Mr2600 Firmware
A command injection vulnerability exists in the 'SaveStaticRouteIPv6Params' parameter of the Motorola MR2600.
network
low complexity
motorola CWE-77
8.8
2024-01-26 CVE-2024-23629 Improper Authentication vulnerability in Motorola Mr2600 Firmware
An authentication bypass vulnerability exists in the web component of the Motorola MR2600.
network
low complexity
motorola CWE-287
7.5
2024-01-26 CVE-2024-23630 Unrestricted Upload of File with Dangerous Type vulnerability in Motorola Mr2600 Firmware
An arbitrary firmware upload vulnerability exists in the Motorola MR2600.
network
low complexity
motorola CWE-434
8.8
2023-10-19 CVE-2022-26941 Use of Externally-Controlled Format String vulnerability in Motorola Mtm5400 Firmware and Mtm5500 Firmware
A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for the AT+CTGL command.
low complexity
motorola CWE-134
8.8
2023-10-19 CVE-2022-26942 Release of Invalid Pointer or Reference vulnerability in Motorola Mtm5400 Firmware and Mtm5500 Firmware
The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted execution environment (TEE) modules.
local
low complexity
motorola CWE-763
8.2
2023-10-19 CVE-2022-26943 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Motorola Mtm5400 Firmware and Mtm5500 Firmware
The Motorola MTM5000 series firmwares generate TETRA authentication challenges using a PRNG using a tick count register as its sole entropy source.
low complexity
motorola CWE-338
8.8
2023-10-19 CVE-2022-27813 Unspecified vulnerability in Motorola Mtm5400 Firmware and Mtm5500 Firmware
Motorola MTM5000 series firmwares lack properly configured memory protection of pages shared between the OMAP-L138 ARM and DSP cores.
local
low complexity
motorola
8.2