Vulnerabilities > Motorola > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-17 | CVE-2021-3458 | Improper Authentication vulnerability in Motorola Mm1000 Firmware The Motorola MM1000 device configuration portal can be accessed without authentication, which could allow adapter settings to be modified. | 4.6 |
| 2021-08-17 | CVE-2021-3459 | OS Command Injection vulnerability in Motorola Mm1000 Firmware A privilege escalation vulnerability was reported in the MM1000 device configuration web server, which could allow privileged shell access and/or arbitrary privileged commands to be executed on the adapter. | 6.8 |
| 2021-07-21 | CVE-2020-21932 | Improper Authentication vulnerability in Motorola CX2 Firmware 1.0.2 A vulnerability in /Login.html of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to bypass login and obtain a partially authorized token and uid. | 5.3 |
| 2021-07-21 | CVE-2020-21936 | Missing Authentication for Critical Function vulnerability in Motorola CX2 Firmware 1.0.2 An issue in HNAP1/GetMultipleHNAPs of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to access the components GetStationSettings, GetWebsiteFilterSettings and GetNetworkSettings without authentication. | 5.3 |
| 2019-04-18 | CVE-2019-11321 | Missing Authentication for Critical Function vulnerability in Motorola CX2 Firmware and M2 Firmware An issue was discovered in Motorola CX2 1.01 and M2 1.01. | 5.3 |
| 2017-07-31 | CVE-2017-9498 | Improper Validation of Integrity Check Value vulnerability in multiple products The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) and Xfinity XR11-20 Voice Remote devices allows local users to upload arbitrary firmware images to an XR11 by leveraging root access. | 5.5 |
| 2017-07-31 | CVE-2017-9495 | Information Exposure vulnerability in Motorola Mx011Anm Firmware Mx011An2.9P6S1Prodsey The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) devices allows physically proximate attackers to read arbitrary files by pressing "EXIT, Down, Down, 2" on an RF4CE remote to reach the diagnostic display, and then launching a Remote Web Inspector script. | 4.6 |
| 2017-07-31 | CVE-2017-9494 | Incorrect Permission Assignment for Critical Resource vulnerability in Motorola Mx011Anm Firmware Mx011An2.9P6S1Prodsey The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) devices allows remote attackers to enable a Remote Web Inspector that is accessible from the public Internet. | 5.3 |