VYPR
Vendor

Alliedtelesyn

Products
43
CVEs
13
Across products
35
Status
Private

Products

43
View all 43 products →

Recent CVEs

13
  • CVE-2017-2125HigApr 28, 2017
    risk 0.57cvss 8.8epss 0.02

    Privilege escalation vulnerability in CentreCOM AR260S V2 remote authenticated attackers to gain privileges via the guest account.

  • CVE-2006-6184Dec 1, 2006
    risk 0.08cvss epss 0.66

    Multiple stack-based buffer overflows in Allied Telesyn TFTP Server (AT-TFTP) 1.9, and possibly earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a long filename in a (1) GET or (2) PUT command.

  • CVE-2014-1982Mar 31, 2014
    risk 0.04cvss epss 0.10

    The administrative interface in Allied Telesis AT-RG634A ADSL Broadband router 3.3+, iMG624A firmware 3.5, iMG616LH firmware 2.4, and iMG646BD firmware 3.5 allows remote attackers to gain privileges and execute arbitrary commands via a direct request to cli.html.

  • CVE-2022-38394Sep 8, 2022
    risk 0.00cvss epss 0.01

    Use of hard-coded credentials for the telnet server of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote unauthenticated attacker to execute an arbitrary OS command.

  • CVE-2022-38094Sep 8, 2022
    risk 0.00cvss epss 0.02

    OS command injection vulnerability in the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.

  • CVE-2022-35273Sep 8, 2022
    risk 0.00cvss epss 0.02

    OS command injection vulnerability in GUI setting page of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.

  • CVE-2022-34869Sep 8, 2022
    risk 0.00cvss epss 0.01

    Undocumented hidden command that can be executed from the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.

  • CVE-2014-7249Dec 19, 2014
    risk 0.00cvss epss 0.06

    Buffer overflow on the Allied Telesis AR440S, AR441S, AR442S, AR745, AR750S, AR750S-DP, AT-8624POE, AT-8624T/2M, AT-8648T/2SP, AT-8748XL, AT-8848, AT-9816GB, AT-9924T, AT-9924Ts, CentreCOM AR415S, CentreCOM AR450S, CentreCOM AR550S, CentreCOM AR570S, CentreCOM 8700SL, CentreCOM…

  • CVE-2006-6717Dec 23, 2006
    risk 0.00cvss epss 0.01

    The Allied Telesis AT-9000/24 Ethernet switch accepts management packets from arbitrary VLANs, contrary to the documentation, which allows remote attackers to conduct attacks against the switch from unexpected locations.

  • CVE-2006-6718Dec 23, 2006
    risk 0.00cvss epss 0.01

    The Allied Telesis AT-9000/24 Ethernet switch has a default password for its admin account, "manager," which allows remote attackers to perform unauthorized actions.

  • CVE-2006-2030Apr 26, 2006
    risk 0.00cvss epss 0.01

    The Allied Telesyn AT-9724TS switch allows remote attackers to cause a denial of service via a large amount of UDP data to the switch, which leads to unstable operation and possibly failure of the management interface or routing.

  • CVE-2002-2415Dec 31, 2002
    risk 0.00cvss epss 0.01

    Allied Telesyn AT-8024 1.3.1 and Rapier 24 switches allow remote authenticated users to cause a denial of service in the management interface via a stream of zero (null) bytes sent via UDP to a running service.

  • CVE-2001-0617Aug 22, 2001
    risk 0.00cvss epss 0.01

    Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the 'Virtual Server' enabled can allow a remote attacker to gain access to mapped services even though the single portmappings may be disabled.