Unrated severityNVD Advisory· Published Mar 31, 2014· Updated May 6, 2026
CVE-2014-1982
CVE-2014-1982
Description
The administrative interface in Allied Telesis AT-RG634A ADSL Broadband router 3.3+, iMG624A firmware 3.5, iMG616LH firmware 2.4, and iMG646BD firmware 3.5 allows remote attackers to gain privileges and execute arbitrary commands via a direct request to cli.html.
Affected products
8- cpe:2.3:h:alliedtelesis:at-rg634a:-:*:*:*:*:*:*:*
- cpe:2.3:h:alliedtelesis:img616lh:-:*:*:*:*:*:*:*
- cpe:2.3:h:alliedtelesis:img624a:-:*:*:*:*:*:*:*
- cpe:2.3:h:alliedtelesis:img646bd:-:*:*:*:*:*:*:*
- cpe:2.3:o:alliedtelesis:at-rg634a_firmware:3.3\+:*:*:*:*:*:*:*
- cpe:2.3:o:alliedtelesis:img616lh_firmware:\+2.4:*:*:*:*:*:*:*
- cpe:2.3:o:alliedtelesis:img624a_firmware:3.5:*:*:*:*:*:*:*
- cpe:2.3:o:alliedtelesis:img646bd_firmware:3.5:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- seclists.org/fulldisclosure/2014/Mar/340nvdExploit
- www.exploit-db.com/exploits/32545nvdExploit
News mentions
0No linked articles in our index yet.