Known Vulnerabilities for products from Verizon

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Verizon".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Additional devices specifications by Verizon can be found at device.report : Verizon

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-10629 json Not Provided 2026-06-02 2026-06-03
CVE-2022-29729 json Verizon 4G LTE Network Extender GA4.38 - V0.4.038.2131 utilizes a weak default admin password generation algorithm which gene... 7.5 - HIGH 2022-06-02 2022-06-10
CVE-2022-28377 json On Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 and OutDoorUnit (ODU) 3.33.101.0 devices, the CRTC and ODU RPC endpoin... 7.5 - HIGH 2022-07-14 2022-07-21
CVE-2022-28376 json Verizon 5G Home LVSKIHP outside devices through 2022-02-15 allow anyone (knowing the device's serial number) to access a CPE ... 8.1 - HIGH 2022-04-03 2023-08-08
CVE-2022-28375 json Verizon 5G Home LVSKIHP OutDoorUnit (ODU) 3.33.101.0 does not property sanitize user-controlled parameters within the crtcswi... 9.8 - CRITICAL 2022-07-14 2023-08-08
CVE-2022-28374 json Verizon 5G Home LVSKIHP OutDoorUnit (ODU) 3.33.101.0 does not property sanitize user-controlled parameters within the DMACC U... 8.8 - HIGH 2022-07-14 2023-08-08
CVE-2022-28373 json Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 does not properly sanitize user-controlled parameters within the crtcread... 9.8 - CRITICAL 2022-07-14 2022-07-21
CVE-2022-28372 json On Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 and OutDoorUnit (ODU) 3.33.101.0 devices, the CRTC and ODU RPC endpoin... 7.5 - HIGH 2022-07-14 2022-07-21
CVE-2022-28371 json On Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 and OutDoorUnit (ODU) 3.33.101.0 devices, the CRTC and ODU RPC endpoin... 7.5 - HIGH 2022-07-14 2023-08-08
CVE-2022-28370 json On Verizon 5G Home LVSKIHP OutDoorUnit (ODU) 3.33.101.0 devices, the RPC endpoint crtc_fw_upgrade provides a means of provisi... 7.5 - HIGH 2022-07-14 2023-08-08
CVE-2022-28369 json Verizon 5G Home LVSKIHP InDoorUnit (IDU) 3.4.66.162 does not validate the user-provided URL within the crtcmode function's en... 9.8 - CRITICAL 2022-07-14 2022-07-21
CVE-2020-7660 json serialize-javascript prior to 3.1.0 allows remote attackers to inject arbitrary code via the function "deleteFunctions" withi... 8.1 - HIGH 2020-06-01 2020-06-08
CVE-2019-16769 json The serialize-javascript npm package before version 2.1.1 is vulnerable to Cross-site Scripting (XSS). It does not properly m... 5.4 - MEDIUM 2019-12-05 2020-01-17
CVE-2019-3916 json Information disclosure vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.01.00.05 allows an remote, u... 7.5 - HIGH 2019-04-11 2020-08-24
CVE-2019-3915 json Authentication Bypass by Capture-replay vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.01.00.05 al... 7.5 - HIGH 2019-04-11 2020-08-24
CVE-2019-3914 json Remote command injection vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.01.00.05 allows a remote, ... 7.2 - HIGH 2019-04-11 2020-08-24
CVE-2013-4877 json The Verizon Wireless Network Extender SCS-26UC4 and SCS-2U01 does not use CAVE authentication, which makes it easier for remo... Not Provided 2013-07-18 2026-04-29
CVE-2013-4876 json The Verizon Wireless Network Extender SCS-2U01 has a hardcoded password for the root account, which makes it easier for physi... Not Provided 2013-07-18 2026-04-29
CVE-2013-4875 json The Uboot bootloader on the Verizon Wireless Network Extender SCS-2U01 allows physically proximate attackers to bypass the in... Not Provided 2013-07-18 2026-04-29
CVE-2013-4874 json The Uboot bootloader on the Verizon Wireless Network Extender SCS-26UC4 allows physically proximate attackers to obtain root ... Not Provided 2013-07-18 2026-04-29
Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Verizon

Type Vendor Product Version
HardwareVerizonFios Actiontec Mi424wr-gen31 Router-
Operating
System		VerizonFios Actiontec Mi424wr-gen31 Router Firmware40.19.36
ApplicationVerizonSerialize-javascript1.0.0
ApplicationVerizonVzaccess Manager3.1.4
ApplicationVerizonVz In Home Agent7.7.2
HardwareVerizonWireless Network Extenderscs-26uc4
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report