Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-50258

Malicious code in bioql PyPI...

5.8CVSS5AI score0.22096EPSS
Exploits0References4
NVD
NVD
added 2024/10/15 1:15 p.m.18 views

CVE-2024-9977

A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BRg5.61.11WVK.0b26. Affected is an unknown function of the file /cgi-bin/settings-firewall.cgi of the component Firewall Settings Page. The manipulation of the argument SrcInterface leads to os command injectio...

5.8CVSS0.22096EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/10/15 12:31 p.m.22 views

CVE-2024-9977 MitraStar GPT-2541GNAC Firewall Settings Page settings-firewall.cgi os command injection

A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BRg5.61.11WVK.0b26. Affected is an unknown function of the file /cgi-bin/settings-firewall.cgi of the component Firewall Settings Page. The manipulation of the argument SrcInterface leads to os command injectio...

5.8CVSS7.3AI score0.22096EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/10/15 12:31 p.m.23 views

CVE-2024-9977 MitraStar GPT-2541GNAC Firewall Settings Page settings-firewall.cgi os command injection

A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BRg5.61.11WVK.0b26. Affected is an unknown function of the file /cgi-bin/settings-firewall.cgi of the component Firewall Settings Page. The manipulation of the argument SrcInterface leads to os command injectio...

5.8CVSS0.22096EPSS
Exploits0References4
CVE
CVE
added 2024/10/15 12:31 p.m.47 views

CVE-2024-9977

CVE-2024-9977 refers to a remote os command injection vulnerability in the MitraStar GPT-2541GNAC Firewall Settings Page, via the /cgi-bin/settings-firewall.cgi file. The attackable surface is the SrcInterface parameter, whose manipulation can lead to command execution on the device. Multiple sou...

5.8CVSS5.3AI score0.22096EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/10/15 12:0 a.m.6 views

PT-2024-39975 · Mitrastar · Mitrastar Gpt-2541Gnac

Name of the Vulnerable Software and Affected Versions: MitraStar GPT-2541GNAC BR g5.6 1.11WVK.0b26 Description: A critical issue was found in the Firewall Settings Page component, specifically in the /cgi-bin/settings-firewall.cgi file. The SrcInterface argument is vulnerable to os command...

5.8CVSS5.2AI score0.22096EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/10/15 12:0 a.m.5 views

MitraStar GPT-2541GNAC 操作系统命令注入漏洞

The MitraStar GPT-2541GNAC is a router from China-based MitraStar. The MitraStar GPT-2541GNAC suffers from an operating system command injection vulnerability that originates in the Firewall Settings Page component of /cgi-bin/settings-firewall.cgi that contains a command injection vulnerability...

5.8CVSS5.3AI score0.22096EPSS
Exploits0References5
OSV
OSV
added 2022/05/03 12:15 p.m.3 views

CVE-2021-42165

MitraStar GPT-2541GNAC-N1 HGU 100VNZ0b33 devices allow remote authenticated users to obtain root access by executing command "deviceinfo show file &&/bin/bash" because of incorrect sanitization of parameter "path"...

8.8CVSS5.8AI score0.13717EPSS
Exploits1References3
NVD
NVD
added 2022/05/03 12:15 p.m.14 views

CVE-2021-42165

MitraStar GPT-2541GNAC-N1 HGU 100VNZ0b33 devices allow remote authenticated users to obtain root access by executing command "deviceinfo show file &&/bin/bash" because of incorrect sanitization of parameter "path"...

9CVSS0.13717EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/05/03 11:25 a.m.24 views

CVE-2021-42165

MitraStar GPT-2541GNAC-N1 HGU 100VNZ0b33 devices allow remote authenticated users to obtain root access by executing command "deviceinfo show file &&/bin/bash" because of incorrect sanitization of parameter "path"...

8.7AI score0.13717EPSS
Exploits1References3
CVE
CVE
added 2022/05/03 11:25 a.m.80 views

CVE-2021-42165

CVE-2021-42165 concerns MitraStar GPT-2541GNAC-N1 (HGU) firmware version 100VNZ0b33. A vulnerability allows remote authenticated users to obtain root access by executing the command “deviceinfo show file &&/bin/bash” due to incorrect sanitization of the parameter “path.” This is a command-injecti...

9CVSS8.4AI score0.13717EPSS
Exploits1References3Affected Software1
0day.today
0day.today
added 2021/09/29 12:0 a.m.313 views

Mitrastar GPT-2541GNAC-N1 - Privilege escalation Vulnerability

Exploit Title: Mitrastar GPT-2541GNAC-N1 - Privilege escalation Exploit Author: Leonardo Nicolas Servalli Vendor Homepage: www.mitrastar.com Platform: Mistrastar router devices GPT-2541GNAC-N1 HGU Tested on: Firmware BRg3.5100VNZ0b33 Vulnerability analysis:...

7.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2018/02/02 12:0 a.m.7 views

The vulnerability of the microprogrammed software of the GPT-2541GNAC and DSL-100HN-T1 routers, related to access control deficiencies, allows attackers to gain access to devices with root privileges.

The vulnerability of the microprogrammed software of the GPT-2541GNAC and DSL-100HN-T1 routers is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to devices with root privileges using the command “/bin/sh”...

9CVSS5.5AI score0.02571EPSS
Exploits1References4
CNVD
CNVD
added 2017/11/06 12:0 a.m.4 views

MitraStar GPT-2541GNAC (HGU) and DSL-100HN-T1 Elevation of Privilege Vulnerability

The MitraStar GPT-2541GNAC HGU and DSL-100HN-T1 are both MitraStar router products. An elevation of privilege vulnerability exists in the MitraStar GPT-2541GNAC HGU version 1.00VNJ0b1 and DSL-100HN-T1 ES113WJY0b16. An attacker can exploit this vulnerability to gain root access by specifying /bin/...

9CVSS7.4AI score0.02571EPSS
Exploits1References1
CNVD
CNVD
added 2017/11/06 12:0 a.m.5 views

MitraStar GPT-2541GNAC (HGU) and DSL-100HN-T1 Elevation of Privilege Vulnerability (CNVD-2017-33285)

The MitraStar GPT-2541GNAC HGU and DSL-100HN-T1 are both MitraStar router products. An elevation of privilege vulnerability exists in the MitraStar GPT-2541GNAC HGU version 1.00VNJ0b1 and the DSL-100HN-T1 ES113WJY0b16, which originates from the account zyad1234 with the password zyad1234. An...

10CVSS7.6AI score0.03825EPSS
Exploits1References1
Prion
Prion
added 2017/11/03 5:29 p.m.22 views

Design/Logic Flaw

MitraStar GPT-2541GNAC HGU 1.00VNJ0b1 and DSL-100HN-T1 ES113WJY0b16 devices allow remote authenticated users to obtain root access by specifying /bin/sh as the command to execute...

9CVSS8.4AI score0.02571EPSS
Exploits1References2Affected Software2
Prion
Prion
added 2017/11/03 5:29 p.m.16 views

Design/Logic Flaw

MitraStar GPT-2541GNAC HGU 1.00VNJ0b1 and DSL-100HN-T1 ES113WJY0b16 devices have a zyad1234 password for the zyad1234 account, which is equivalent to root and undocumented...

10CVSS9.5AI score0.03825EPSS
Exploits1References3Affected Software2
NVD
NVD
added 2017/11/03 5:29 p.m.15 views

CVE-2017-16522

MitraStar GPT-2541GNAC HGU 1.00VNJ0b1 and DSL-100HN-T1 ES113WJY0b16 devices allow remote authenticated users to obtain root access by specifying /bin/sh as the command to execute...

9CVSS8.5AI score0.02571EPSS
Exploits1References2
CVE
CVE
added 2017/11/03 5:0 p.m.49 views

CVE-2017-16522

CVE-2017-16522 affects MitraStar GPT-2541GNAC (HGU) and DSL-100HN-T1 devices (versions 1.00(VNJ0)b1 and ES_113WJY0b16). The vulnerability allows remote authenticated users to gain root access by specifying /bin/sh as the command to execute, indicating a privilege-escalation issue in the device co...

9CVSS8.4AI score0.02571EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2017/11/03 5:0 p.m.57 views

CVE-2017-16523

The CVE-2017-16523 entry describes an elevation-of-privilege issue in MitraStar router models MitraStar GPT-2541GNAC (HGU) 1.00(VNJ0)b1 and DSL-100HN-T1 ES_113WJY0b16. A Zyad1234 account password zyad1234 is undocumented and effectively grants root-level access. This vulnerability originates from...

10CVSS9.5AI score0.03825EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder