VYPR

AR260S V2

by CentreCOM

CVEs (4)

  • CVE-2022-38394CriSep 8, 2022
    risk 0.64cvss 9.8epss 0.01

    Use of hard-coded credentials for the telnet server of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote unauthenticated attacker to execute an arbitrary OS command.

  • CVE-2022-38094HigSep 8, 2022
    risk 0.57cvss 8.8epss 0.02

    OS command injection vulnerability in the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.

  • CVE-2022-35273HigSep 8, 2022
    risk 0.57cvss 8.8epss 0.02

    OS command injection vulnerability in GUI setting page of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.

  • CVE-2022-34869HigSep 8, 2022
    risk 0.57cvss 8.8epss 0.01

    Undocumented hidden command that can be executed from the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.