Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Dx600a_firmware
(Gigaset)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-03-02 | CVE-2021-25306 | A buffer overflow vulnerability in the AT command interface of Gigaset DX600A v41.00-175 devices allows remote attackers to force a device reboot by sending relatively long AT commands. | Dx600a_firmware | 7.5 | ||
| 2021-03-02 | CVE-2021-25309 | The telnet administrator service running on port 650 on Gigaset DX600A v41.00-175 devices does not implement any lockout or throttling functionality. This situation (together with the weak password policy that forces a 4-digit password) allows remote attackers to easily obtain administrative access via brute-force attacks. | Dx600a_firmware | 9.8 |