Filtered by vendor Mercku
Subscriptions
Filtered by product M6a
Subscriptions
Total
5 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-62773 | 1 Mercku | 1 M6a | 2025-10-23 | 2.4 Low |
| Mercku M6a devices through 2.1.0 allow TELNET sessions via a router.telnet.enabled.update request by an administrator. | ||||
| CVE-2025-62772 | 1 Mercku | 1 M6a | 2025-10-23 | 3.1 Low |
| On Mercku M6a devices through 2.1.0, session tokens remain valid for at least months in some cases. | ||||
| CVE-2025-62771 | 1 Mercku | 1 M6a | 2025-10-23 | 7.5 High |
| Mercku M6a devices through 2.1.0 allow password changes via intranet CSRF attacks. | ||||
| CVE-2025-62775 | 1 Mercku | 1 M6a | 2025-10-23 | 8 High |
| Mercku M6a devices through 2.1.0 allow root TELNET logins via the web admin password. | ||||
| CVE-2025-62774 | 1 Mercku | 1 M6a | 2025-10-23 | 3.1 Low |
| On Mercku M6a devices through 2.1.0, the authentication system uses predictable session tokens based on timestamps. | ||||
Page 1 of 1.