CVSS: 10.0EPSS: 32%CPEs: 2EXPL: 2CVE-2020-21937
https://notcve.org/view.php?id=CVE-2020-21937
An command injection vulnerability in HNAP1/SetWLanApcliSettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary system commands. Una vulnerabilidad de inyección de comandos en HNAP1/SetWLanApcliSettings del enrutador CX Motorola CX2 versión 1.0.2 Build 20190508 Rel.97360n, permite a atacantes ejecutar comandos arbitrarios del sistema • https://cwe.mitre.org/data/definitions/78.html https://github.com/cc-crack/router/blob/master/motocx2.md https://l0n0l.xyz/post/motocx2 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 2CVE-2020-21936
https://notcve.org/view.php?id=CVE-2020-21936
An issue in HNAP1/GetMultipleHNAPs of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to access the components GetStationSettings, GetWebsiteFilterSettings and GetNetworkSettings without authentication. Un problema en HNAP1/GetMultipleHNAPs del enrutador CX Motorola CX2 versión 1.0.2 Build 20190508 Rel.97360n, permite a atacantes acceder a los componentes GetStationSettings, GetWebsiteFilterSettings y GetNetworkSettings sin autenticación • https://github.com/cc-crack/router/blob/master/motocx2.md https://l0n0l.xyz/post/motocx2 • CWE-306: Missing Authentication for Critical Function •
CVSS: 9.8EPSS: 2%CPEs: 2EXPL: 2CVE-2020-21935
https://notcve.org/view.php?id=CVE-2020-21935
A command injection vulnerability in HNAP1/GetNetworkTomographySettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary code. Una vulnerabilidad de inyección de comandos en HNAP1/GetNetworkTomographySettings del enrutador CX Motorola CX2 versión 1.0.2 Build 20190508 Rel.97360n, permite a atacantes ejecutar código arbitrario • https://github.com/cc-crack/router/blob/master/motocx2.md https://l0n0l.xyz/post/motocx2 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 2CVE-2020-21934
https://notcve.org/view.php?id=CVE-2020-21934
An issue was discovered in Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n where authentication to download the Syslog could be bypassed. Se detectó un problema en el enrutador CX Motorola CX2 versión 1.0.2 Build 20190508 Rel.97360n, donde se podía omitir la autenticación para descargar el Syslog • https://github.com/cc-crack/router/blob/master/motocx2.md https://l0n0l.xyz/post/motocx2 • CWE-306: Missing Authentication for Critical Function •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 2CVE-2020-21933
https://notcve.org/view.php?id=CVE-2020-21933
An issue was discovered in Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n where the admin password and private key could be found in the log tar package. Se detectó un problema en el enrutador CX Motorola CX2 versión 1.0.2 Build 20190508 Rel.97360n, donde la contraseña de administrador y la clave privada podían encontrarse en el paquete log tar • https://github.com/cc-crack/router/blob/master/motocx2.md https://l0n0l.xyz/post/motocx2 • CWE-532: Insertion of Sensitive Information into Log File •