VYPR

NTPL-Xpon1GFEVN

by Nepstech

CVEs (2)

  • CVE-2024-40119HigJul 17, 2024
    risk 0.58cvss 8.8epss 0.01

    Nepstech Wifi Router xpon (terminal) model NTPL-Xpon1GFEVN v.1.0 Firmware V2.0.1 contains a Cross-Site Request Forgery (CSRF) vulnerability in the password change function, which allows remote attackers to change the admin password without the user's consent, leading to a…

  • CVE-2024-37855HigJun 25, 2024
    risk 0.55cvss 8.4epss 0.00

    An issue in Nepstech Wifi Router xpon (terminal) NTPL-Xpon1GFEVN, hardware verstion 1.0 firmware 2.0.1 allows a remote attacker to execute arbitrary code via the router's Telnet port 2345 without requiring authentication credentials.