Skip to main content

Vdv 23 Firmware

2 CVEs product

Monthly

CVE-2017-16902 HIGH POC THREAT Act Now

On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 18.3%.

Buffer Overflow Vdv 23 Firmware
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
18.3%
CVE-2017-16843 MEDIUM POC This Month

Vonage VDV-23 115 3.2.11-0.9.40 devices have stored XSS via the NewKeyword or NewDomain field to /goform/RgParentalBasic. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Vdv 23 Firmware
NVD Exploit-DB
CVSS 3.0
5.4
EPSS
0.1%
EPSS 18% CVSS 7.5
HIGH POC THREAT Act Now

On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 18.3%.

Buffer Overflow Vdv 23 Firmware
NVD Exploit-DB
EPSS 0% CVSS 5.4
MEDIUM POC This Month

Vonage VDV-23 115 3.2.11-0.9.40 devices have stored XSS via the NewKeyword or NewDomain field to /goform/RgParentalBasic. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Vdv 23 Firmware
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy