Skip to main content

Magic R230 Firmware

2 CVEs product

Monthly

CVE-2024-38903 MEDIUM POC This Month

H3C Magic R230 V100R002's udpserver opens port 9034, allowing attackers to execute arbitrary commands. Rated medium severity (CVSS 4.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Magic R230 Firmware
NVD GitHub
CVSS 3.1
4.1
EPSS
0.4%
CVE-2024-38902 CRITICAL POC Act Now

H3C Magic R230 V100R002 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Magic R230 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.5%
EPSS 0% CVSS 4.1
MEDIUM POC This Month

H3C Magic R230 V100R002's udpserver opens port 9034, allowing attackers to execute arbitrary commands. Rated medium severity (CVSS 4.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Magic R230 Firmware
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

H3C Magic R230 V100R002 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Magic R230 Firmware
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy