M2 firmware

This hub aggregates every CVE we track for M2 firmware, a product in the mobile apps space. Use it to gauge the current risk picture and drill into individual advisories.

Mobile Apps

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

CRITICAL9MEDIUM1

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 10 most recently published vulnerabilities affecting M2 firmware.

CVE-2019-12297An issue was discovered in scopd on Motorola routers CX2 1.01 and M2 1.01. There is a Use of an Externally Controlled Format String, reachable via TCP port 8010 or UDP port 8080.9.8May 23, 2019
CVE-2019-11322An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a command injection in the function startRmtAssist in hnap, which leads to remote code execution via shell metacharacters in a JSO...9.8Apr 18, 2019
CVE-2019-11321An issue was discovered in Motorola CX2 1.01 and M2 1.01. The router opens TCP port 8010. Users can send hnap requests to this port without authentication to obtain information such as the MAC addr...5.3Apr 18, 2019
CVE-2019-11320In Motorola CX2 1.01 and M2 1.01, users can access the router's /priv_mgt.html web page to launch telnetd, as demonstrated by the 192.168.51.1 address.9.8Apr 18, 2019
CVE-2019-11319An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a command injection in the function downloadFirmware in hnap, which leads to remote code execution via shell metacharacters in a J...9.8Apr 18, 2019
CVE-2019-9121An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a roo...9.8Mar 7, 2019
CVE-2019-9119An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a roo...9.8Mar 7, 2019
CVE-2019-9117An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a roo...9.8Mar 7, 2019
CVE-2019-9120An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a roo...9.8Mar 7, 2019
CVE-2019-9118An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a roo...9.8Mar 7, 2019

Product normalization is registry-driven with AI assist and human review. How it works