Verizon Fios Quantum Gateway vulnerabilities
3 known vulnerabilities affecting verizon/fios_quantum_gateway.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH3
Vulnerabilities
Page 1 of 1
CVE-2019-3914P2HIGHCVSS 7.2ExploitedvFirmware version 02.01.00.052019-04-11
CVE-2019-3914 [HIGH] CWE-78 CVE-2019-3914: Remote command injection vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.0
Remote command injection vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.01.00.05 allows a remote, authenticated attacker to execute arbitrary commands on the target device by adding an access control rule for a network object with a crafted hostname.
nvd
CVE-2019-3915P3HIGHCVSS 7.5vFirmware version 02.01.00.052019-04-11
CVE-2019-3915 [HIGH] CWE-294 CVE-2019-3915: Authentication Bypass by Capture-replay vulnerability in Verizon Fios Quantum Gateway (G1100) firmwa
Authentication Bypass by Capture-replay vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.01.00.05 allows an unauthenticated attacker with adjacent network access to intercept and replay login requests to gain access to the administrative web interface.
nvd
CVE-2019-3916P3HIGHCVSS 7.5vFirmware version 02.01.00.052019-04-11
CVE-2019-3916 [HIGH] CWE-425 CVE-2019-3916: Information disclosure vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.01.
Information disclosure vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.01.00.05 allows an remote, unauthenticated attacker to retrieve the value of the password salt by simply requesting an API URL in a web browser (e.g. /api).
nvd