Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:27 a.m.8 views

CVE-2024-36061

EnGenius EWS356-FIT devices through 1.1.30 allow blind OS command injection. This allows an attacker to execute arbitrary OS commands via shell metacharacters to the Ping and Speed Test utilities...

9.8CVSS8.3AI score0.01068EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:22 a.m.4 views

CVE-2024-31975

EnGenius EWS356-Fit devices through 1.1.30 allow a remote attacker to conduct stored XSS attacks via the Wi-Fi SSID parameters. JavaScript embedded into a vulnerable field is executed when the user clicks the SSID field's corresponding EDIT button...

4.8CVSS6AI score0.00348EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/27 12:0 a.m.3 views

EnGenius EWS356-FIT 安全漏洞

The EnGenius EWS356-FIT is an indoor wireless access point from EnGenius. A security vulnerability exists in the EnGenius EWS356-FIT version 1.1.30 and prior versions. A remote attacker could exploit the vulnerability to execute arbitrary operating system commands via the controller connection...

8CVSS7.5AI score0.00964EPSS
Exploits0References1
OSV
OSV
added 2024/11/11 8:15 p.m.4 views

CVE-2024-36061

EnGenius EWS356-FIT devices through 1.1.30 allow blind OS command injection. This allows an attacker to execute arbitrary OS commands via shell metacharacters to the Ping and Speed Test utilities...

9.8CVSS6AI score0.01068EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/11 12:0 a.m.4 views

EnGenius EWS356-FIT 安全漏洞

The EnGenius EWS356-FIT is an indoor wireless access point from EnGenius. A security vulnerability exists in the EnGenius EWS356-FIT version 1.1.30 and earlier. An attacker can exploit the vulnerability to execute arbitrary operating system commands via shell metacharacters to the Ping and Speed...

9.8CVSS7.5AI score0.01068EPSS
Exploits0References1
OSV
OSV
added 2024/10/30 6:15 p.m.3 views

CVE-2024-31975

EnGenius EWS356-Fit devices through 1.1.30 allow a remote attacker to conduct stored XSS attacks via the Wi-Fi SSID parameters. JavaScript embedded into a vulnerable field is executed when the user clicks the SSID field's corresponding EDIT button...

4.8CVSS5.8AI score0.00348EPSS
Exploits0References1
Rows per page
Query Builder