GCVE - cpe:2.3:o:cdatatec:fd1216s-r1_firmware:2.4.05

Approved changes feed: RSS · Atom

cpe:2.3:o:cdatatec:fd1216s-r1_firmware:2.4.05_000:*:*:*:*:*:*:*

part: o version: 2.4.05_000 update: *

Vendor	Cdatatec (`acf4f607-1ac2-528c-a2a5-1c5a080a6e02`)
Product	Fd1216S R1 Firmware (`eef53ec8-0345-50d8-a07b-607c6c12a07d`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-29063`	vulnerable	2026-06-03 14:42:22.164592	Details available An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. A custom encryption algorithm is used to store encrypted passwords. This algorithm will XOR the password with the hardcoded j7a(L#yZ98sSd5HfSgGjMj8;Ss;d)(&^#@$a2s0i3g value. Published: 2020-11-24T20:58:12.000Z Updated: 2024-08-04T16:48:01.176Z Open on db.gcve.eu Reference links https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-29062`	vulnerable	2026-06-03 14:42:22.160914	Details available An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. There is a default blank password for the guest account. Published: 2020-11-24T20:58:23.000Z Updated: 2024-08-04T16:48:01.491Z Open on db.gcve.eu Reference links https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-29061`	vulnerable	2026-06-03 14:42:22.157037	Details available An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. There is a default root126 password for the root account. Published: 2020-11-24T20:58:32.000Z Updated: 2024-08-04T16:48:01.572Z Open on db.gcve.eu Reference links https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-29060`	vulnerable	2026-06-03 14:42:22.153473	Details available An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. There is a default debug124 password for the debug account. Published: 2020-11-24T20:58:43.000Z Updated: 2024-08-04T16:48:01.574Z Open on db.gcve.eu Reference links https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-29059`	vulnerable	2026-06-03 14:42:22.149334	Details available An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. There is a default panger123 password for the suma123 account for certain old firmware. Published: 2020-11-24T20:58:53.000Z Updated: 2024-08-04T16:48:01.566Z Open on db.gcve.eu Reference links https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-29058`	vulnerable	2026-06-03 14:42:22.145739	Details available An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. Attackers can discover cleartext web-server credentials via certain /opt/lighttpd/web/cgi/ requests. Published: 2020-11-24T20:59:29.000Z Updated: 2024-08-04T16:48:01.307Z Open on db.gcve.eu Reference links https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-29057`	vulnerable	2026-06-03 14:42:22.142189	Details available An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. It allows remote attackers to cause a denial of service (reboot) by sending random bytes to the telnet server on port 23, aka a "shawarma" attack. Published: 2020-11-24T20:59:55.000Z Updated: 2024-08-04T16:48:01.417Z Open on db.gcve.eu Reference links https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-29056`	vulnerable	2026-06-03 14:42:22.138110	Details available An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. One can escape from a shell and acquire root privileges by leveraging the TFTP download configuration. Published: 2020-11-24T21:00:13.000Z Updated: 2024-08-04T16:48:01.269Z Open on db.gcve.eu Reference links https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-29055`	vulnerable	2026-06-03 14:42:22.113253	Details available An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. By default, the appliance can be managed remotely only with HTTP, telnet, and SNMP. It doesn't support SSL/TLS for HTTP or SSH. An attacker can intercept passwords sent in cleartext and conduct man-in-the-middle attacks on the management of the appliance. Published: 2020-11-24T21:00:57.000Z Updated: 2024-08-04T16:48:01.586Z Open on db.gcve.eu Reference links https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-29054`	vulnerable	2026-06-03 14:42:22.096463	Details available An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. Attackers can use "show system infor" to discover cleartext TELNET credentials. Published: 2020-11-24T21:01:14.000Z Updated: 2024-08-04T16:48:01.253Z Open on db.gcve.eu Reference links https://pierrekim.github.io/blog/2020-07-07-cdata-olt-0day-vulnerabilities.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

C-Data Technology FD1216S-R1 Firmware 2.4.05 000

PURL mappings

Vulnerability references

Contribute