GCVE - cpe:2.3:a:kaspersky_lab:eltex_esp-200:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:kaspersky_lab:eltex_esp-200:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Kaspersky Lab (`b5f4462b-8575-5828-a714-cab051c30fb5`)
Product	Eltex Esp 200 (`306e253c-2d0b-52f4-a212-d89b4ab9bf34`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-15360`	vulnerable	2026-06-03 14:38:13.070991	Details available An attacker without authentication can login with default credentials for privileged users in Eltex ESP-200 firmware version 1.2.0. Published: 2018-08-17T15:00:00.000Z Updated: 2024-08-05T09:54:03.404Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/08/17/klcert-18-016-eltex-esp-200-router-default-password-usage/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-15359`	vulnerable	2026-06-03 14:38:13.070681	Details available An authenticated attacker with low privileges can use insecure sudo configuration to expand attack surface in Eltex ESP-200 firmware version 1.2.0. Published: 2018-08-17T15:00:00.000Z Updated: 2024-08-05T09:54:03.461Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/08/17/klcert-18-015-eltex-esp-200-router-unsecure-sudo-configuration/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-15358`	vulnerable	2026-06-03 14:38:13.070358	Details available An authenticated attacker with low privileges can activate high privileged user and use it to expand attack surface in Eltex ESP-200 firmware version 1.2.0. Published: 2018-08-17T15:00:00.000Z Updated: 2024-08-05T09:54:01.992Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/08/17/klcert-18-014-eltex-esp-200-router-build-in-user-with-highest-privileges/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-15357`	vulnerable	2026-06-03 14:38:13.070007	Details available An authenticated attacker with low privileges can extract password hash information for all users in Eltex ESP-200 firmware version 1.2.0. Published: 2018-08-17T15:00:00.000Z Updated: 2024-08-05T09:54:01.805Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/08/17/klcert-18-013-eltex-esp-200-router-information-disclosure/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-15356`	vulnerable	2026-06-03 14:38:13.068544	Details available An authenticated attacker can execute arbitrary code using command ejection in Eltex ESP-200 firmware version 1.2.0. Published: 2018-08-17T15:00:00.000Z Updated: 2024-08-05T09:54:02.435Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/08/17/klcert-18-012-eltex-esp-200-router-command-injection/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.