GCVE - cpe:2.3:o:allied-telesis:centrecom_ar260s

Approved changes feed: RSS · Atom

cpe:2.3:o:allied-telesis:centrecom_ar260s_firmware:*:*:*:*:*:*:*:*

part: o version: * update: *

Vendor	Allied Telesis (`0de611bb-ef5f-5c7f-90a5-0c71c318e7f2`)
Product	Centrecom Ar260S Firmware (`d6d87e05-26b4-53fc-ac71-87c559e155e5`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-38394`	vulnerable	2026-06-08 05:47:16.292545	Details available Use of hard-coded credentials for the telnet server of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote unauthenticated attacker to execute an arbitrary OS command. Published: 2022-09-08T07:10:46.000Z Updated: 2024-08-03T10:54:03.548Z Open on db.gcve.eu Reference links https://www.allied-telesis.co.jp/support/list/faq/vuls/20220829.html https://jvn.jp/en/jp/JVN45473612/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-38094`	vulnerable	2026-06-08 05:47:15.701077	Details available OS command injection vulnerability in the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command. Published: 2022-09-08T07:10:45.000Z Updated: 2024-08-03T10:45:52.657Z Open on db.gcve.eu Reference links https://www.allied-telesis.co.jp/support/list/faq/vuls/20220829.html https://jvn.jp/en/jp/JVN45473612/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-35273`	vulnerable	2026-06-08 05:46:04.456407	Details available OS command injection vulnerability in GUI setting page of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command. Published: 2022-09-08T07:10:43.000Z Updated: 2024-08-03T09:36:44.082Z Open on db.gcve.eu Reference links https://www.allied-telesis.co.jp/support/list/faq/vuls/20220829.html https://jvn.jp/en/jp/JVN45473612/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-34869`	vulnerable	2026-06-08 05:46:03.736542	Details available Undocumented hidden command that can be executed from the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command. Published: 2022-09-08T07:10:42.000Z Updated: 2024-08-03T09:22:10.608Z Open on db.gcve.eu Reference links https://www.allied-telesis.co.jp/support/list/faq/vuls/20220829.html https://jvn.jp/en/jp/JVN45473612/index.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Centrecom Ar260S Firmware

PURL mappings

Vulnerability references

Contribute