Shodan
Vulnerabilities
Vulnerable Software
Motorola:  >> Cx2 Firmware  Security Vulnerabilities
CVE-2020-21932
A vulnerability in /Login.html of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to bypass login and obtain a partially authorized token and uid.
CVSS Score
5.3
EPSS Score
0.002
Published
2021-07-21
CVE-2020-21933
An issue was discovered in Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n where the admin password and private key could be found in the log tar package.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-07-21
CVE-2020-21934
An issue was discovered in Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n where authentication to download the Syslog could be bypassed.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-07-21
CVE-2020-21935
A command injection vulnerability in HNAP1/GetNetworkTomographySettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.033
Published
2021-07-21
CVE-2020-21936
An issue in HNAP1/GetMultipleHNAPs of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to access the components GetStationSettings, GetWebsiteFilterSettings and GetNetworkSettings without authentication.
CVSS Score
5.3
EPSS Score
0.002
Published
2021-07-21
CVE-2020-21937
An command injection vulnerability in HNAP1/SetWLanApcliSettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary system commands.
CVSS Score
9.8
EPSS Score
0.089
Published
2021-07-21
CVE-2019-12297
An issue was discovered in scopd on Motorola routers CX2 1.01 and M2 1.01. There is a Use of an Externally Controlled Format String, reachable via TCP port 8010 or UDP port 8080.
CVSS Score
9.8
EPSS Score
0.004
Published
2019-05-23
CVE-2019-11320
In Motorola CX2 1.01 and M2 1.01, users can access the router's /priv_mgt.html web page to launch telnetd, as demonstrated by the 192.168.51.1 address.
CVSS Score
9.8
EPSS Score
0.004
Published
2019-04-18
CVE-2019-11321
An issue was discovered in Motorola CX2 1.01 and M2 1.01. The router opens TCP port 8010. Users can send hnap requests to this port without authentication to obtain information such as the MAC addresses of connected client devices.
CVSS Score
5.3
EPSS Score
0.003
Published
2019-04-18
CVE-2019-11322
An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a command injection in the function startRmtAssist in hnap, which leads to remote code execution via shell metacharacters in a JSON value.
CVSS Score
9.8
EPSS Score
0.045
Published
2019-04-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved