alcatel-lucent

Top products

The 15 most recently published vulnerabilities affecting alcatel-lucent.

• CVE-2025-52690Command Injection Vulnerability in the OmniAccess Stellar over UDP Service8.1Jul 16, 2025
• CVE-2025-52689Weak Session ID Check in the OmniAccess Stellar Web Management Interface9.8Jul 16, 2025
• CVE-2025-52688Command Injection Vulnerability in the OmniAccess Stellar Web Management Interface9.8Jul 16, 2025
• CVE-2025-52687JavaScript Injection Vulnerability in the OmniAccess Stellar Web Management Interface2.4Jul 16, 2025
• CVE-2015-6498Alcatel-Lucent Home Device Manager before 4.1.10, 4.2.x before 4.2.2 allows remote attackers to spoof and make calls as target devices.7.5Aug 9, 2017
• CVE-2015-8687Multiple cross-site scripting (XSS) vulnerabilities in the Management Console in Alcatel-Lucent Motive Home Device Manager (HDM) before 4.2 allow remote attackers to inject arbitrary web script or ...5.4Mar 23, 2017
• CVE-2016-9796Alcatel-Lucent OmniVista 8770 2.0 through 3.0 exposes different ORBs interfaces, which can be queried using the GIOP protocol on TCP port 30024. An attacker can bypass authentication, and OmniVista...9.8Dec 3, 2016
• CVE-2015-4586Cross-site request forgery (CSRF) vulnerability in Alcatel-Lucent CellPipe 7130 RG 5Ae.M2013 HOL with firmware 1.0.0.20h.HOL allows remote attackers to hijack the authentication of administrators f...6.8Jun 23, 2015
• CVE-2015-4587Cross-site scripting (XSS) vulnerability in the Alcatel-Lucent CellPipe 7130 router with firmware 1.0.0.20h.HOL allows remote attackers to inject arbitrary web script or HTML via the "Custom applic...4.3Jun 18, 2015
• CVE-2015-2805Cross-site request forgery (CSRF) vulnerability in sec/content/sec_asa_users_local_db_add.html in the management web interface in Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400, 6855, 690...6.8Jun 16, 2015
• CVE-2015-2804The management web interface in Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400, and 6855 with firmware before 6.6.4.309.R01 and 6.6.5.x before 6.6.5.80.R02 generates weak session identifi...4.3Jun 16, 2015
• CVE-2013-4653Multiple cross-site scripting (XSS) vulnerabilities in the signin functionality of ics in MyTeamwork services in Alcatel-Lucent Omnitouch 8660 My Teamwork before 6.7, Omnitouch 8670 Automated Messa...4.3Aug 20, 2013
• CVE-2011-0345Directory traversal vulnerability in the NMS server in Alcatel-Lucent OmniVista 4760 R5.1.06.03 and earlier allows remote attackers to read arbitrary files via directory traversal sequences in HTTP...3.3Mar 8, 2011
• CVE-2011-0344Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool web interface in the embedded web server in the Communication Server (CS) in Alcatel-Lucent OmniPCX...5.8Mar 8, 2011
• CVE-2010-3281Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server before R5.1.06.03.c_Patch3 allows remote attackers to execute arbitrary code or cause a denial of servi...5.4Sep 23, 2010