Fiberhome hg6245d telnet firmware 2021 CVE-2021-27153: 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-08-03: 9. “The fiberhome devices have quite a similar codebase, so it is likely all other fiberhome devices (AN5506-04-FA, AN5506-04-FAT, AN5506-04-F) are also vulnerable. FiberHome HG6245D routers suffer from bypass, hard-coded credentials, password disclosure, privilege escalation, denial of service, remote stack overflow, and additional vulnerabilities. suffers from bypass, cross site scripting, denial of service, and privilege escalation vulnerabilities. This will remove firewall rules and allow an attacker to reach the telnet server (used for the CLI). 0 MEDIUM: 9. reReddit: Top posts of 2021 Feb 10, 2021 · An issue was discovered on FiberHome HG6245D devices through RP2613. 5 High: An issue was discovered on FiberHome HG6245D devices Vulmon Search is a vulnerability search engine. Jan 14, 2021 · The complete version on "Multiple vulnerabilities found in FiberHome HG6245D routers" In the HG6245D firmware version RP2602, this vulnerability has been CVE-2021-27174: 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-08-03: 7. Globe 2021. 8 CRITICAL: An issue was discovered on FiberHome HG6245D devices through RP2613. . gov/vuln/detail/CVE-2021-27177 An issue was discovered on FiberHome HG6245D devices through RP2613. There is a telnet?enable=0&key=calculated (BR0_MAC) backdoor API, without authentication, provided by the HTTP server. Feb 10, 2021 · An issue was discovered on FiberHome HG6245D devices through RP2613. 8. Reddit . wifi_custom. Hg6245d_firmware: 9. 8 2021-02-10 CVE-2021-27171 An issue was discovered on FiberHome HG6245D devices through RP2613. Jan 12, 2021 · The FiberHome HG6245D routers are GPON FTTH routers. FiberHome HG6245D คูม่ือการใชง้าน รุ่น FiberHome HG6245D 1. การตงั้ค่าเพื่อเชื่อมต่อ Internet 3. allow an attacker to reach the telnet server (used for the CLI). 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-08-03: 7. Vulnerable Configurations Feb 15, 2021 · fiberhome -- hg6245d_firmware An issue was discovered on FiberHome HG6245D devices through RP2613. The vulnerabilities have been confirmed in the latest firmware image (RP2613). References. The Impact of CVE-2021-27151 The hardcoded rootmet / m3tr0r00t credentials can lead to unauthorized access and compromise the confidentiality of sensitive information. 8 Critical: An issue was discovered on FiberHome Feb 10, 2021 · An issue was discovered on FiberHome HG6245D devices through RP2613. 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-11-21: 7. There is a 6GFJdY4aAuUKJjdtSn7d Security vulnerabilities of Fiberhome Hg6245d Firmware version rp2613 published in 2021 CVE-2021-27151 is a security issue found in FiberHome HG6245D devices where the web daemon contains hardcoded credentials, potentially risking the security of an ISP. The web daemon contains the hardcoded L1vt1m4eng / 888888 credentials for an ISP. It is possible to crash the telnet daemon by sending a certain 0a 65 6e 61 62 6c 65 0a 02 0a 1a 0a string. Você pode voltar a obter acesso no modem resetando via t 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-08-03: 9. The telnet daemon on port 23/tcp can be abused with the gpon/gpon credentials. Some passwords are stored in cleartext in nvram. sh. It is possible to start a Linux telnetd as root on port 26/tcp by using the CLI interface commands of ddd and shell (or tshell). Sep 19, 2022 · Hi, is it can get firmware openwrt of this device gpon HG6245D ,Knowing that I have full access to the settings of this router (superadmin account) With the option to activate FTP server. sec gmail com> Date: Tue, 12 Jan 2021 09:14:16 +0000 Jan 13, 2021 · Authored by Pierre Kim. CVE-2021-27139: 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-08-03: 7. https://nvd. kim. ” An issue was discovered on FiberHome HG6245D devices through RP2613. สถานะไฟ Router 2. การตั้งค่า DHCP 5. They are mainly used in South America and in Southeast Asia (from Shodan). Find mitigation steps and preventive measures here. It is possible to bypass authentication by sending the decoded value of the GgpoZWxwCmxpc3QKd2hvCg== string to the telnet server. Isso ai galera, neste video eu ensino como restaurar completamente o fiberhome no padrão de fábrica. CVE-2021-27177: 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-11-21: 9. 2021 - the latest firmware version Jan 20, 2021 · “Some vulnerabilities have been tested successfully against another fiberhome device (AN5506-04-FA, firmware RP2631, 4 April 2019),” said security researcher Pierre Kim. Jan 12, 2021 · UPDATE Feb 7, 2021 - the latest firmware version (RP2613) is also vulnerable. It is possible to crash the telnet daemon by sending a certain 0a 65 6e 61 62 6c 65 0a 02 0a 1a Feb 10, 2021 · Description . io/blog/2021-01-12 Feb 10, 2021 · An issue was discovered on FiberHome HG6245D devices through RP2613. cfg has cleartext passwords and 0644 permissions. May 24, 2022 · An issue was discovered on FiberHome HG6245D devices through RP2613. Jan 12, 2021 · Article précédent : Pepperl+Fuchs IO-Link Master Series 1. 8 Critical: An issue was discovered on FiberHome HG6245D devices through RP2613. Learn about CVE-2021-27165, a security vulnerability in FiberHome HG6245D devices allowing unauthorized access via telnet. reReddit: Top posts of July 2021. ESP32 is a series of low cost, low power system on a chip microcontrollers with integrated Wi-Fi and dual-mode Bluetooth. Some vulnerabilities have been tested successfully against another fiberhome device (AN5506-04-FA, firmware RP2631, 4 April 2019). การตั้งค่า WAN, Wireless 4. CVE-2021-27170 An issue was discovered on FiberHome HG6245D devices through RP2613. An issue was discovered on FiberHome HG6245D devices through RP2613. 5 High: An issue was discovered on FiberHome HG6245D devices through RP2613. The ESP32 series employs either a Tensilica Xtensa LX6, Xtensa LX7 or a RiscV processor, and both dual-core and single-core variations are available. Jan 30, 2021 · From: Pierre Kim <pierre. 3. การตั้งค่า Bridge Mode 6. d/system-config. 36 CSRF / XSS / Command Injection ≈ Packet Storm Précédent Article suivant : Envira Gallery Lite 1. 8 Critical: An issue was discovered on FiberHome HG6245D 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-08-03: 9. By default, there are no firewall rules for IPv6 connectivity, exposing the internal management interfaces to the Internet. nist. A hardcoded GEPON password for root is defined inside /etc/init. It gives comprehensive vulnerability information through a very simple user interface. 2 Cross Site Scripting ≈ Packet Storm Suivant Globe Fiberhome GPON ONU HG6245D - RP2715 - User Manual . CVE-2021-27168: 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2021-02-12: 5. 5 High: An issue was discovered on FiberHome HG6245D devices CVE-2021-27174: 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-11-21: 7. CVE-2021-27173: 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-11-21: 7. CVE-2021-27154: 1 Fiberhome: 2 Hg6245d, Hg6245d Firmware: 2024-08-03: 9. The web daemon contains the hardcoded admin / tele1234 credentials for an ISP. ffr ibxep nosn njiptb hhzshn sqfhb ibze urlpg jpoxpnf nsggk