T-com : Security Vulnerabilities, CVEs, CVSS score >= 5
Deutsche Telekom (T-com) Speedport W 700v uses JavaScript delays for invalid authentication attempts to the CGI script, which allows remote attackers to bypass the delays and conduct brute-force attacks via direct calls to the authentication CGI script.
Max CVSS
7.8
EPSS Score
27.19%
Published
2007-05-14
Updated
2018-10-16
T-Com Speedport 500V routers with firmware 1.31 allow remote attackers to bypass authentication and reconfigure the device via a LOGINKEY=TECOM cookie value.
Max CVSS
7.5
EPSS Score
6.93%
Published
2007-01-23
Updated
2018-10-16
2 vulnerabilities found