Skip to main content

Hotbox Router Firmware

6 CVEs product

Monthly

CVE-2013-5220 MEDIUM POC This Month

goform/login on the HOT HOTBOX router with software 2.1.11 allows remote attackers to cause a denial of service (device crash) via crafted HTTP POST data. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
CVSS 2.0
6.1
EPSS
0.7%
CVE-2013-5219 LOW POC Monitor

Directory traversal vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to read arbitrary files via a .. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
CVSS 2.0
3.3
EPSS
1.5%
CVE-2013-5218 LOW POC Monitor

Cross-site scripting (XSS) vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to inject arbitrary web script or HTML via a crafted DHCP Host Name option, which is not. Rated low severity (CVSS 2.9). Public exploit code available and no vendor patch available.

XSS Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
CVSS 2.0
2.9
EPSS
0.8%
CVE-2013-5039 MEDIUM POC This Month

Cross-site request forgery (CSRF) vulnerability in goform/wlanBasicSecurity on the HOT HOTBOX router with software 2.1.11 allows remote attackers to hijack the authentication of administrators for. Rated medium severity (CVSS 5.4). Public exploit code available and no vendor patch available.

CSRF Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
CVSS 2.0
5.4
EPSS
0.1%
CVE-2013-5038 MEDIUM POC This Month

The HOT HOTBOX router with software 2.1.11 allows remote attackers to bypass authentication by configuring a source IP address that had previously been used for an authenticated session. Rated medium severity (CVSS 5.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
CVSS 2.0
5.8
EPSS
0.8%
CVE-2013-5037 LOW POC Monitor

The HOT HOTBOX router with software 2.1.11 has a default WPS PIN of 12345670, which makes it easier for remote attackers to obtain the WPA or WPA2 pre-shared key via EAP messages. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
CVSS 2.0
3.3
EPSS
0.7%
EPSS 1% CVSS 6.1
MEDIUM POC This Month

goform/login on the HOT HOTBOX router with software 2.1.11 allows remote attackers to cause a denial of service (device crash) via crafted HTTP POST data. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
EPSS 2% CVSS 3.3
LOW POC Monitor

Directory traversal vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to read arbitrary files via a .. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
EPSS 1% CVSS 2.9
LOW POC Monitor

Cross-site scripting (XSS) vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote attackers to inject arbitrary web script or HTML via a crafted DHCP Host Name option, which is not. Rated low severity (CVSS 2.9). Public exploit code available and no vendor patch available.

XSS Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
EPSS 0% CVSS 5.4
MEDIUM POC This Month

Cross-site request forgery (CSRF) vulnerability in goform/wlanBasicSecurity on the HOT HOTBOX router with software 2.1.11 allows remote attackers to hijack the authentication of administrators for. Rated medium severity (CVSS 5.4). Public exploit code available and no vendor patch available.

CSRF Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
EPSS 1% CVSS 5.8
MEDIUM POC This Month

The HOT HOTBOX router with software 2.1.11 allows remote attackers to bypass authentication by configuring a source IP address that had previously been used for an authenticated session. Rated medium severity (CVSS 5.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Hotbox Router Firmware Hotbox Router
NVD Exploit-DB
EPSS 1% CVSS 3.3
LOW POC Monitor

The HOT HOTBOX router with software 2.1.11 has a default WPS PIN of 12345670, which makes it easier for remote attackers to obtain the WPA or WPA2 pre-shared key via EAP messages. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Hotbox Router Firmware Hotbox Router
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy