Etictelecom Remote Access Server Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Etictelecom Remote Access Server Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2022-3703 — CVSS 7.6 (high): All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior’s web portal is vulnerable to accepting malicious firmware…
CVE-2024-26153 — CVSS 7.4 (high): All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.9.19 are vulnerable to cross-site request forgery (CSRF). An external…
CVE-2023-3453 — CVSS 7.1 (high): ETIC Telecom RAS versions 4.7.0 and prior the web management portal authentication disabled by default. This could allow an attacker with…
CVE-2024-26155 — CVSS 6.8 (medium): All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 expose clear text credentials in the web portal. An attacker can…
CVE-2022-41607 — CVSS 6.2 (medium): All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior’s application programmable interface (API) is vulnerable to…
CVE-2024-26157 — CVSS 6.1 (medium): All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 are vulnerable to reflected cross site scripting (XSS) attacks in…
CVE-2022-40981 — CVSS 5.9 (medium): All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior is vulnerable to malicious file upload. An attacker could take…
CVE-2024-26154 — CVSS 4.8 (medium): All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 are vulnerable to reflected cross site scripting in the appliance…
CVE-2024-26156 — CVSS 4.8 (medium): All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 are vulnerable to reflected cross site scripting (XSS) attacks in…