Vulnerabilities (CVE)

Filtered by vendor Quectel Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-26921 1 Quectel 2 Ag550qcn, Ag550qcn Firmware 2023-12-10 N/A 9.8 CRITICAL
OS Command Injection vulnerability in quectel AG550QCN allows attackers to execute arbitrary commands via ql_atfwd.
CVE-2022-26147 1 Quectel 2 Rg502q-ea, Rg502q-ea Firmware 2023-12-10 10.0 HIGH 9.8 CRITICAL
The Quectel RG502Q-EA modem before 2022-02-23 allow OS Command Injection.
CVE-2021-45815 1 Quectel 2 Uc20, Uc20 Firmware 2023-12-10 4.3 MEDIUM 6.1 MEDIUM
Quectel UC20 UMTS/HSPA+ UC20 6.3.14 is affected by a Cross Site Scripting (XSS) vulnerability.
CVE-2021-31698 1 Quectel 2 Eg25-g, Eg25-g Firmware 2023-12-10 10.0 HIGH 9.8 CRITICAL
Quectel EG25-G devices through 202006130814 allow executing arbitrary code remotely by using an AT command to place shell metacharacters in quectel_handle_fumo_cfg input in atfwd_daemon.