Approved changes feed: RSS · Atom

cpe:2.3:o:ateme:flamingo_xl_firmware:3.6.20:*:*:*:*:*:*:*

part: o version: 3.6.20 update: *

VendorAteme (6cb0dc4b-9f1a-57c2-8f87-40ebc4f8b346)
ProductFlamingo Xl Firmware (e9e94cee-2781-5609-85e3-610929639344)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-53983 vulnerable 2026-06-08 06:19:40.254140 Anevia Flamingo XL/XS 3.6.20 Default Credentials Authentication Bypass
CRITICAL (9.8)
Anevia Flamingo XL/XS 3.6.20 contains a critical vulnerability with weak default administrative credentials that can be easily guessed. Attackers can leverage these hard-coded credentials to gain full remote system control without complex authentication mechanisms.
Published: 2025-12-30T22:41:42.839Z
Updated: 2026-01-16T19:00:18.214Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-36252 vulnerable 2026-06-08 06:06:28.670584 Details available
An issue in Ateme Flamingo XL v.3.6.20 and XS v.3.6.5 allows a remote authenticated attacker to execute arbitrary code and cause a denial of service via a the session expiration function.
Published: 2023-06-26T00:00:00.000Z
Updated: 2024-12-03T18:55:40.283Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.