Vulnerabilities > Motorola > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-31 | CVE-2022-4003 | Unspecified vulnerability in Motorola Q14 Firmware A denial-of-service vulnerability could allow an authenticated user to trigger an internal service restart via a specially crafted API request. | 6.5 |
| 2024-06-13 | CVE-2024-38279 | Missing Authentication for Critical Function vulnerability in Motorola Vigilant Fixed LPR Coms BOX Firmware The affected product is vulnerable to an attacker modifying the bootloader by using custom arguments to bypass authentication and gain access to the file system and obtain password hashes. | 4.6 |
| 2024-06-13 | CVE-2024-38280 | Cleartext Storage of Sensitive Information vulnerability in Motorola Vigilant Fixed LPR Coms BOX Firmware An unauthorized user is able to gain access to sensitive data, including credentials, by physically retrieving the hard disk of the product as the data is stored in clear text. | 4.6 |
| 2024-02-12 | CVE-2024-25360 | Unspecified vulnerability in Motorola Cx2L Firmware 1.0.1 A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the SystemWizardStatus component via sending a crafted request to device_web_ip. | 5.3 |
| 2023-10-27 | CVE-2022-3681 | Improper Authentication vulnerability in Motorola Mr2600 A vulnerability has been identified in the MR2600 router v1.0.18 and earlier that could allow an attacker within range of the wireless network to successfully brute force the WPS pin, potentially allowing them unauthorized access to a wireless network. | 6.5 |
| 2023-09-01 | CVE-2022-3407 | Improper Resource Shutdown or Release vulnerability in Motorola Smartphone Firmware I some cases, when the device is USB-tethered to a host PC, and the device is sharing its mobile network connection with the host PC, if the user originates a call on the device, then the device's modem may reset and cause the phone call to not succeed. | 4.3 |
| 2023-01-30 | CVE-2022-34885 | Unspecified vulnerability in Motorola Mr2600 Firmware An improper input sanitization vulnerability in the Motorola MR2600 router could allow a local user with elevated permissions to execute arbitrary code. | 6.7 |
| 2022-12-14 | CVE-2022-3917 | Information Exposure vulnerability in Motorola Moto E20 Firmware Improper access control of bootloader function was discovered in Motorola Mobility Motorola e20 prior to version RONS31.267-38-8 allows attacker with local access to read partition or RAM data. | 5.5 |
| 2022-04-22 | CVE-2021-3898 | Improper Certificate Validation vulnerability in Motorola Device Help and Ready for Versions of Motorola Ready For and Motorola Device Help Android applications prior to 2021-04-08 do not properly verify the server certificate which could lead to the communication channel being accessible by an attacker. | 6.5 |
| 2021-12-15 | CVE-2021-38701 | Cross-site Scripting vulnerability in Motorola products Certain Motorola Solutions Avigilon devices allow XSS in the administrative UI. | 4.8 |