Lucene search
K

32 matches found

CNNVD
CNNVD
added 2025/01/14 12:0 a.m.21 views

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. An external configuration control vulnerability exists in the WAVLINK AC3000, which can be exploited by attackers to cause a privilege bypass...

9.1CVSS6.8AI score0.01457EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.3 views

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. The WAVLINK AC3000 suffers from an external configuration control vulnerability that originates from the openvpn.cgi openvpnserversetup function's selopeninterface parameter failing to correctly filter constructed command special...

9.1CVSS7.5AI score0.01276EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.4 views

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. An external configuration control vulnerability exists in the WAVLINK AC3000, which can be exploited by attackers to cause a privilege bypass...

9.1CVSS6.8AI score0.01457EPSS
Exploits1References2
Talos
Talos
added 2025/01/14 12:0 a.m.12 views

Wavlink AC3000 nas.cgi set_smb_cfg() Configuration Control Vulnerability

Talos Vulnerability Report TALOS-2024-2055 Wavlink AC3000 nas.cgi setsmbcfg Configuration Control Vulnerability January 14, 2025 CVE Number CVE-2024-39280 SUMMARY An external config control vulnerability exists in the nas.cgi setsmbcfg functionality of Wavlink AC3000 M33A8.V5030.210505. A special...

9.1CVSS7.6AI score0.34167EPSS
Exploits1
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.3 views

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. An external configuration control vulnerability exists in the WAVLINK AC3000, which can be exploited by attackers to cause a privilege bypass...

9.1CVSS6.8AI score0.01027EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.4 views

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. An external configuration control vulnerability exists in the WAVLINK AC3000, which can be exploited by attackers to cause a privilege bypass...

9.1CVSS6.8AI score0.01027EPSS
Exploits1References2
OSV
OSV
added 2023/05/22 4:15 p.m.6 views

CVE-2023-32349

Version 00.07.03.4 and prior of Teltonika’s RUT router firmware contain a packet dump utility that contains proper validation for filter parameters. However, variables for validation checks are stored in an external configuration file. An authenticated attacker could use an exposed UCI...

8.8CVSS7.7AI score0.00978EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/12 12:0 a.m.5 views

Teltonika RUT router 安全漏洞

Teltonika RUT router is a series of industrial routers. A security vulnerability exists in Teltonika RUT router versions 00.07.00 through 00.07.03.4, which stems from variables used for authentication checks being stored in an external configuration file. An attacker could exploit the vulnerabili...

8.8CVSS8.7AI score0.00978EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/05/03 12:0 a.m.6 views

F5 BIG-IP 安全漏洞

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, and load balancing. A security vulnerability exists in F5 BIG-IP that stems from a vulnerability that could allow an authenticated attacker to access configuratio...

8.1CVSS8.1AI score0.00528EPSS
Exploits0References4
CNVD
CNVD
added 2022/05/26 12:0 a.m.18 views

Open Automation Software OAS Platform访问控制错误漏洞

Open Automation Software OAS Platform is an industrial Internet of Things IoT suite from Open Automation Software, Inc. An access control error vulnerability exists in Open Automation Software OAS Platform version V16.00.0112, which stems from an external configuration control issue with the OAS...

7.5CVSS2.4AI score0.01208EPSS
Exploits1References1
OSV
OSV
added 2022/05/25 9:15 p.m.7 views

CVE-2022-26303

An external config control vulnerability exists in the OAS Engine SecureAddUser functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to the creation of an OAS user account. An attacker can send a sequence of requests to trigge...

7.5CVSS5.8AI score0.01208EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/05/25 12:0 a.m.4 views

Open Automation Software OAS Platform 访问控制错误漏洞

Open Automation Software OAS Platform is an industrial Internet of Things IoT suite from Open Automation Software, Inc. An access control error vulnerability exists in Open Automation Software OAS Platform version V16.00.0112, which stems from an external configuration control issue with the OAS...

7.5CVSS5.6AI score0.01208EPSS
Exploits1References5
Rows per page
Query Builder