Orange Arv7519rw22 Livebox 2.1 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Orange Arv7519rw22 Livebox 2.1 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2018-20377 — CVSS 9.8 (critical): Orange Livebox 00.96.320S devices allow remote attackers to discover Wi-Fi credentials via /get_getnetworkconf.cgi on port 8080, leading to…
CVE-2018-20575 — CVSS 7.5 (high): Orange Livebox 00.96.320S devices have an undocumented /system_firmwarel.stm URI for manual firmware update. This is related to Firmware…
CVE-2018-20576 — CVSS 5.4 (medium): Orange Livebox 00.96.320S devices allow cgi-bin/autodialing.exe and cgi-bin/phone_test.exe CSRF, leading to arbitrary outbound telephone…