Lucene search
K

22 matches found

VulnCheck KEV
VulnCheck KEV
added 2024/01/21 12:0 a.m.3 views

VulnCheck KEV: CVE-2022-36553

Hytec Inter HWL-2511-SS v1.05 and below was discovered to contain a command injection vulnerability via the component /www/cgi-bin/popen.cgi...

9.8CVSS7.3AI score0.90798EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/01/17 12:0 a.m.6 views

The vulnerability of the popen.cgi (/www/cgi-bin/popen.cgi) implementation of the HWL-2511-SS industrial router’s software allows a perpetrator to execute arbitrary commands.

The vulnerability of the popen.cgi /www/cgi-bin/popen.cgi implementation of the HWL-2511-SS industrial router software is related to the lack of data cleaning measures at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

10CVSS8.1AI score0.90798EPSS
Exploits1References8Affected Software1
GithubExploit
GithubExploit
added 2024/01/08 9:53 p.m.302 views

Exploit for Command Injection in Hytec Hwl-2511-Ss_Firmware

CVE-2022-36553 - Hytec Inter HWL-2511-SS Unauthenticated Remo...

9.8CVSS9.5AI score0.99999EPSS
Exploits75
NVD
NVD
added 2022/08/29 11:15 p.m.10 views

CVE-2022-36554

A command injection vulnerability in the CLI Command Line Interface implementation of Hytec Inter HWL-2511-SS v1.05 and below allows attackers to execute arbitrary commands with root privileges...

9.8CVSS0.02203EPSS
Exploits0References3
OSV
OSV
added 2022/08/29 11:15 p.m.3 views

CVE-2022-36554

A command injection vulnerability in the CLI Command Line Interface implementation of Hytec Inter HWL-2511-SS v1.05 and below allows attackers to execute arbitrary commands with root privileges...

9.8CVSS6AI score0.02203EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/08/29 11:15 p.m.2 views

CVE-2022-36554

A command injection vulnerability in the CLI Command Line Interface implementation of Hytec Inter HWL-2511-SS v1.05 and below allows attackers to execute arbitrary commands with root privileges...

9.8CVSS7.6AI score0.02203EPSS
Exploits0References4
NVD
NVD
added 2022/08/29 11:15 p.m.13 views

CVE-2022-36555

Hytec Inter HWL-2511-SS v1.05 and below implements a SHA512crypt hash for the root account which can be easily cracked via a brute-force attack...

9.8CVSS0.00582EPSS
Exploits0References3
OSV
OSV
added 2022/08/29 11:15 p.m.5 views

CVE-2022-36555

Hytec Inter HWL-2511-SS v1.05 and below implements a SHA512crypt hash for the root account which can be easily cracked via a brute-force attack...

9.8CVSS5.8AI score0.00582EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/08/29 11:15 p.m.3 views

CVE-2022-36553

Hytec Inter HWL-2511-SS v1.05 and below was discovered to contain a command injection vulnerability via the component /www/cgi-bin/popen.cgi...

9.8CVSS7.2AI score0.90798EPSS
Exploits1References5
OSV
OSV
added 2022/08/29 11:15 p.m.3 views

CVE-2022-36553

Hytec Inter HWL-2511-SS v1.05 and below was discovered to contain a command injection vulnerability via the component /www/cgi-bin/popen.cgi...

9.8CVSS5.8AI score0.90798EPSS
Exploits1References3
NVD
NVD
added 2022/08/29 11:15 p.m.14 views

CVE-2022-36553

Hytec Inter HWL-2511-SS v1.05 and below was discovered to contain a command injection vulnerability via the component /www/cgi-bin/popen.cgi...

9.8CVSS0.90798EPSS
Exploits1References3
Prion
Prion
added 2022/08/29 11:15 p.m.39 views

Command injection

Hytec Inter HWL-2511-SS v1.05 and below was discovered to contain a command injection vulnerability via the component /www/cgi-bin/popen.cgi...

7.5CVSS9.8AI score0.90798EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2022/08/29 11:15 p.m.16 views

Command injection

A command injection vulnerability in the CLI Command Line Interface implementation of Hytec Inter HWL-2511-SS v1.05 and below allows attackers to execute arbitrary commands with root privileges...

7.5CVSS9.8AI score0.02203EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2022/08/29 11:15 p.m.14 views

Design/Logic Flaw

Hytec Inter HWL-2511-SS v1.05 and below implements a SHA512crypt hash for the root account which can be easily cracked via a brute-force attack...

7.5CVSS9.3AI score0.00582EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/08/29 10:46 p.m.14 views

CVE-2022-36554

A command injection vulnerability in the CLI Command Line Interface implementation of Hytec Inter HWL-2511-SS v1.05 and below allows attackers to execute arbitrary commands with root privileges...

10AI score0.02203EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/08/29 10:46 p.m.16 views

CVE-2022-36555

Hytec Inter HWL-2511-SS v1.05 and below implements a SHA512crypt hash for the root account which can be easily cracked via a brute-force attack...

9.6AI score0.00582EPSS
Exploits0References3
CVE
CVE
added 2022/08/29 10:46 p.m.73 views

CVE-2022-36554

CVE-2022-36554 describes a command-injection vulnerability in the CLI of Hytec Inter HWL-2511-SS, affecting versions 1.05 and below. The issue allows attackers to run arbitrary commands with root privileges via the affected CLI. Public documents in the connected set confirm the vulnerability and ...

9.8CVSS9.9AI score0.02203EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2022/08/29 10:46 p.m.63 views

CVE-2022-36555

CVE-2022-36555 affects Hytec Inter HWL-2511-SS, versions 1.05 and below. The root cause is a SHA512crypt implementation for the root account that can be cracked via brute-force, allowing unauthorized root access. Public sources confirm the vulnerability in the device firmware and describe the imp...

9.8CVSS9.3AI score0.00582EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2022/08/29 10:46 p.m.113 views

CVE-2022-36553

Hytec Inter HWL-2511-SS (v1.05 and earlier) is affected by an unauthenticated remote command-injection vulnerability in /www/cgi-bin/popen.cgi. Exploitation could allow arbitrary command execution with high impact on confidentiality, integrity, and availability. Public references (NVD/NIST) docum...

9.8CVSS9.8AI score0.90798EPSS
In wildExploits1References3Affected Software1
CNNVD
CNNVD
added 2022/08/29 12:0 a.m.6 views

Hytec Inter HWL-2511-SS 命令注入漏洞

The Hytec Inter HWL-2511-SS is an industrial LTE router and Wi-Fi access point from Hytec Inter, Japan. A security vulnerability exists in the Hytec Inter HWL-2511-SS v1.05 and earlier, which stems from the component /www/cgi-bin/popen.cgi containing a command injection...

9.8CVSS7.1AI score0.90798EPSS
Exploits1References4
Rows per page
Query Builder