Known Vulnerabilities for products from Actiontec
Listed below are 9 of the newest known vulnerabilities associated with the vendor "Actiontec".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-12789 | An issue was discovered on Actiontec T2200H T2200H-31.128L.08 devices, as distributed by Telus. By attaching a UART adapter t... | 6.8 - MEDIUM | 2019-06-17 | 2020-08-24 |
| CVE-2018-19922 | Persistent Cross-Site Scripting (XSS) in the advancedsetup_websiteblocking.html Website Blocking page of the Actiontec C1000A... | 6.1 - MEDIUM | 2018-12-06 | 2019-02-01 |
| CVE-2018-15557 | An issue was discovered in the Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 devices. An attacker can stat... | 8.8 - HIGH | 2019-06-27 | 2020-08-24 |
| CVE-2018-15556 | The Quantenna WiFi Controller on Telus Actiontec WEB6000Q v1.1.02.22 allows login with root level access with the user "root"... | 9.8 - CRITICAL | 2019-06-27 | 2019-10-09 |
| CVE-2018-15555 | On Telus Actiontec WEB6000Q v1.1.02.22 devices, an attacker can login with root level access with the user "root" and passwor... | 9.8 - CRITICAL | 2019-06-28 | 2020-08-24 |
| CVE-2018-10252 | An issue was discovered on Actiontec WCB6200Q before 1.1.10.20a devices. The admin login session cookie is insecurely generat... | 8.1 - HIGH | 2018-05-14 | 2018-06-20 |
| CVE-2015-2905 | Cross-site request forgery (CSRF) vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote a... | 6.8 - MEDIUM | 2015-08-23 | 2015-08-24 |
| CVE-2015-2904 | Actiontec GT784WN modems with firmware before NCS01-1.0.13 have hardcoded credentials, which makes it easier for remote attac... | 8.3 - HIGH | 2015-08-23 | 2015-08-24 |
| CVE-2013-3097 | Unspecified Cross-site scripting (XSS) vulnerability in the Verizon FIOS Actiontec MI424WR-GEN3I router. | 6.1 - MEDIUM | 2019-11-13 | 2019-11-18 |