Vulnerabilities (CVE)

Filtered by vendor Billion Subscribe

Filtered by product Sg600 R2

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-14920	1 Billion	2 Sg600 R2, Sg600 R2 Firmware	2020-08-24	9.0 HIGH	8.8 HIGH
Billion Smart Energy Router SG600R2 Firmware v3.02.rc6 allows an authenticated attacker to gain root execution privileges over the device via a hidden etc_ro/web/adm/system_command.asp shell feature.
CVE-2019-14919	1 Billion	2 Sg600 R2, Sg600 R2 Firmware	2020-01-21	7.2 HIGH	7.8 HIGH
An exposed Telnet Service on the Billion Smart Energy Router SG600R2 with firmware v3.02.rc6 allows a local network attacker to authenticate via hardcoded credentials into a shell, gaining root execution privileges over the device.