Weaknesses of type CWE-912
79 resultsCVE-2026-30704CRITICALThe WiFi Extender WDR201A (HW V2.1, FW LFMZX28040922V1.02) exposes an unprotected UART interface through accessible hardware pads on the PCBEPSS 0.3%CVE-2025-55075MEDIUMHidden functionality issue exists in WN-7D36QR and WN-7D36QR/UE. If this vulnerability is exploited, SSH may be enabled by a remote authentiEPSS 0.3%CVE-2024-37994MEDIUMA vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6EPSS 0.3%CVE-2023-22316MEDIUMHidden functionality vulnerability in PIX-RT100 versions RT100_TEQ_2.1.1_EQ101 and RT100_TEQ_2.1.2_EQ101 allows a network-adjacent attacker EPSS 0.3%CVE-2025-8938MEDIUMTOTOLINK N350R Telnet Service formSysTel backdoorEPSS 0.3%CVE-2022-1741MEDIUM2.2.3 HIDDEN FUNCTIONALITY CWE-912EPSS 0.3%CVE-2025-11544CRITICALImproper Validation of Integrity Check Value vulnerability in Sharp Display Solutions projectors allows a attacker may create and run unauthEPSS 0.3%CVE-2026-1952CRITICALDenial of service via the undocumented subfunction in AS320TEPSS 0.3%CVE-2020-3352MEDIUMCisco Firepower Threat Defense Software Hidden Commands VulnerabilityEPSS 0.3%CVE-2023-4467MEDIUMPoly Trio 8800 Test Automation Mode backdoorEPSS 0.3%CVE-2025-6839MEDIUMConjure Position Department Service Quality Evaluation System head.php eval backdoorEPSS 0.3%CVE-2025-26412MEDIUMUndocumented Root Shell Access in SIMCom SIM7600G ModemEPSS 0.3%CVE-2025-55704MEDIUMHidden functionality issue exists in multiple MFPs provided by Brother Industries, Ltd., which may allow an attacker to obtain the logs of tEPSS 0.2%CVE-2026-34769HIGHElectron: Renderer command-line switch injection via undocumented commandLineSwitches webPreferenceEPSS 0.2%CVE-2024-33583MEDIUMA vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V3.0.1.1), SIMATIC RTLS Locating ManageEPSS 0.2%CVE-2025-9382MEDIUMFNKvision Y215 CCTV Camera Telnet Sevice s1_rf_test_config backdoorEPSS 0.2%CVE-2025-62773LOWMercku M6a devices through 2.1.0 allow TELNET sessions via a router.telnet.enabled.update request by an administrator.EPSS 0.2%CVE-2026-4621MEDIUMHidden Functionality vulnerability in NEC Platforms, Ltd. Aterm Series allows a attacker to enable telnet via network.EPSS 0.2%CVE-2025-30064HIGHPossibility to generate a session for any user via the "ex:action" parameter after obtaining access to the JWT keyEPSS 0.1%