Known Vulnerabilities for products from Auerswald
Listed below are 7 of the newest known vulnerabilities associated with the vendor "Auerswald".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-40859 | Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow attackers with access to the web based... | 9.8 - CRITICAL | 2021-12-07 | 2021-12-10 |
| CVE-2021-40858 | Auerswald COMpact 5500R devices before 8.2B allow Arbitrary File Disclosure. A sub-admin can read the cleartext Admin passwor... | 4.9 - MEDIUM | 2021-12-13 | 2022-01-04 |
| CVE-2021-40857 | Auerswald COMpact 5500R devices before 8.2B allow Privilege Escalation via the passwd=1 substring. | 8.8 - HIGH | 2021-12-13 | 2022-03-31 |
| CVE-2021-40856 | Auerswald COMfortel 1400 IP and 2600 IP before 2.8G devices allow Authentication Bypass via the /about/../ substring. | 7.5 - HIGH | 2021-12-13 | 2022-07-12 |
| CVE-2018-19978 | A buffer overflow vulnerability in the DHCP and PPPOE configuration interface of the Auerswald COMfort 1200 IP phone 3.4.4.1-... | 8 - HIGH | 2019-05-29 | 2019-05-30 |
| CVE-2018-19977 | A command injection (missing input validation, escaping) in the ftp upgrade configuration interface on the Auerswald COMfort ... | 8 - HIGH | 2019-05-29 | 2020-08-24 |
| CVE-2003-1457 | Auerswald COMsuite CTI ControlCenter 3.1 creates a default "runasositron" user account with an easily guessable password, whi... | 4.6 - MEDIUM | 2003-12-31 | 2017-07-29 |