Skip to main content

Freebox Pop Firmware

3 CVEs product

Monthly

CVE-2020-24377 CRITICAL POC Act Now

A DNS rebinding vulnerability in the Freebox OS web interface in Freebox Server before 4.2.3. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Freebox Revolution Firmware Freebox Mini Firmware Freebox One Firmware Freebox Delta Firmware +1
NVD
CVSS 3.1
9.6
EPSS
1.2%
CVE-2020-24376 CRITICAL Act Now

A DNS rebinding vulnerability in the UPnP IGD implementations in Freebox v5 before 1.5.29 and Freebox Server before 4.2.3. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Freebox Revolution Firmware Freebox Mini Firmware Freebox One Firmware Freebox Delta Firmware +1
NVD
CVSS 3.1
9.6
EPSS
1.0%
CVE-2020-24373 HIGH POC This Week

A CSRF vulnerability in the UPnP MediaServer implementation in Freebox Server before 4.2.3. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Freebox Revolution Firmware Freebox Mini Firmware Freebox One Firmware Freebox Delta Firmware +1
NVD
CVSS 3.1
8.8
EPSS
0.5%
EPSS 1% CVSS 9.6
CRITICAL POC Act Now

A DNS rebinding vulnerability in the Freebox OS web interface in Freebox Server before 4.2.3. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Freebox Revolution Firmware Freebox Mini Firmware +3
NVD
EPSS 1% CVSS 9.6
CRITICAL Act Now

A DNS rebinding vulnerability in the UPnP IGD implementations in Freebox v5 before 1.5.29 and Freebox Server before 4.2.3. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Freebox Revolution Firmware Freebox Mini Firmware +3
NVD
EPSS 1% CVSS 8.8
HIGH POC This Week

A CSRF vulnerability in the UPnP MediaServer implementation in Freebox Server before 4.2.3. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Freebox Revolution Firmware Freebox Mini Firmware +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy