T-Mobile TM-AC1900 3.0.0.4.376 3169
Approved changes feed: RSS · Atom
cpe:2.3:o:t-mobile:tm-ac1900:3.0.0.4.376_3169:*:*:*:*:*:*:*
part: o version: 3.0.0.4.376_3169 update: *
| Vendor | T Mobile (3cda13af-6dd7-5790-aa69-d8f539914590) |
|---|---|
| Product | Tm Ac1900 (792078e7-1e9c-5761-8e69-7b2eedd96926) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2014-9583 |
vulnerable | 2026-06-08 05:06:12.168671 |
Details available
common.c in infosvr in ASUS WRT firmware 3.0.0.4.376_1071, 3.0.0.376.2524-g0013f52, and other versions, as used in RT-AC66U, RT-N66U, and other routers, does not properly check the MAC address for a request, which allows remote attackers to bypass authentication and execute arbitrary commands via a NET_CMD_ID_MANU_CMD packet to UDP port 9999. NOTE: this issue was incorrectly mapped to CVE-2014-10000, but that ID is invalid due to its use as an example of the 2014 CVE ID syntax change.
Published: 2015-01-08T20:00:00.000Z
Updated: 2024-08-06T13:47:41.675Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-2925 |
vulnerable | 2026-06-08 05:05:30.347525 |
Details available
Cross-site scripting (XSS) vulnerability in Advanced_Wireless_Content.asp in ASUS RT-AC68U and other RT series routers with firmware before 3.0.0.4.374.5047 allows remote attackers to inject arbitrary web script or HTML via the current_page parameter to apply.cgi.
Published: 2014-04-21T14:00:00.000Z
Updated: 2024-08-06T10:28:46.391Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-2719 |
vulnerable | 2026-06-08 05:05:29.690484 |
Details available
Advanced_System_Content.asp in the ASUS RT series routers with firmware before 3.0.0.4.374.5517, when an administrator session is active, allows remote authenticated users to obtain the administrator user name and password by reading the source code.
Published: 2014-04-21T14:00:00.000Z
Updated: 2024-08-06T10:21:36.055Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-2718 |
vulnerable | 2026-06-08 05:05:29.654257 |
Details available
ASUS RT-AC68U, RT-AC66R, RT-AC66U, RT-AC56R, RT-AC56U, RT-N66R, RT-N66U, RT-N56R, RT-N56U, and possibly other RT-series routers before firmware 3.0.0.4.376.x do not verify the integrity of firmware (1) update information or (2) downloaded updates, which allows man-in-the-middle (MITM) attackers to execute arbitrary code via a crafted image.
Published: 2014-11-04T22:00:00.000Z
Updated: 2024-08-06T10:21:36.023Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-5948 |
vulnerable | 2026-06-08 05:04:54.813262 |
Details available
The Network Analysis tab (Main_Analysis_Content.asp) in the ASUS RT-AC68U and other RT series routers with firmware before 3.0.0.4.374.5047 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the Target field (destIP parameter).
Published: 2014-04-21T14:00:00.000Z
Updated: 2024-08-06T17:29:41.646Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-1813 |
vulnerable | 2026-06-08 05:03:56.514699 |
Details available
util-linux/mdev.c in BusyBox before 1.21.0 uses 0777 permissions for parent directories when creating nested directories under /dev/, which allows local users to have unknown impact and attack vectors.
Published: 2013-11-23T11:00:00.000Z
Updated: 2024-08-06T15:13:32.987Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-2716 |
vulnerable | 2026-06-08 04:58:08.568142 |
Details available
The DHCP client (udhcpc) in BusyBox before 1.20.0 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in the (1) HOST_NAME, (2) DOMAIN_NAME, (3) NIS_DOMAIN, and (4) TFTP_SERVER_NAME host name options.
Published: 2012-07-03T16:00:00.000Z
Updated: 2024-08-06T23:08:23.908Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.