VYPR
Vendor

Utstarcom

Products
8
CVEs
6
Across products
9
Status
Private

Products

8

Recent CVEs

6
  • CVE-2017-14243CriSep 17, 2017
    risk 0.68cvss 9.8epss 0.15

    An authentication bypass vulnerability on UTStar WA3002G4 ADSL Broadband Modem WA3002G4-0021.01 devices allows attackers to directly access administrative settings and obtain cleartext credentials from HTML source, as demonstrated by info.cgi, upload.cgi, backupsettings.cgi,…

  • CVE-2005-3716HigNov 21, 2005
    risk 0.49cvss 7.5epss 0.02

    The SNMP daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has hard-coded public credentials that cannot be changed, which allows attackers to obtain sensitive information.

  • CVE-2005-3717Nov 21, 2005
    risk 0.00cvss epss 0.02

    The telnet daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has a default username "target" and password "password", which allows remote attackers to gain full access to the system.

  • CVE-2005-3718Nov 21, 2005
    risk 0.00cvss epss 0.02

    UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 does not allow users to disable access to (1) SNMP or (2) the rlogin port TCP 513, which allows remote attackers to exploit other vulnerabilities such as CVE-2005-3716, or execute arbitrary shell…

  • CVE-2005-0745Mar 9, 2005
    risk 0.00cvss epss 0.00

    UTStarcom iAN-02EX VoIP Analog Terminal Adaptor (ATA) allows local users to bypass ATA access restrictions by dialing "*#26845#" and causing a device reset.

  • CVE-2002-1936Dec 31, 2002
    risk 0.00cvss epss 0.02

    UTStarcom BAS 1000 3.1.10 creates several default or back door accounts and passwords, which allows remote attackers to gain access via (1) field account with a password of "*field", (2) guru account with a password of "*3noguru", (3) snmp account with a password of "snmp", or…