Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

88 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 12:36 p.m.3 views

CVE-2023-49230

An issue was discovered in Peplink Balance Two before 8.4.0. A missing authorization check in captive portals allows attackers to modify the portals' configurations without prior authentication...

8.8CVSS6.8AI score0.0205EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:36 p.m.7 views

CVE-2023-49229

An issue was discovered in Peplink Balance Two before 8.4.0. A missing authorization check in the administration web service allows read-only, unprivileged users to obtain sensitive information about the device configuration...

4.3CVSS6.3AI score0.00488EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:36 p.m.7 views

CVE-2023-49226

An issue was discovered in Peplink Balance Two before 8.4.0. Command injection in the traceroute feature of the administration console allows users with admin privileges to execute arbitrary commands as root...

7.2CVSS8.1AI score0.03423EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 9:49 a.m.6 views

CVE-2020-24246

Peplink Balance before 8.1.0rc1 allows an unauthenticated attacker to download PHP configuration files /filemanager/php/connector.php from Web Admin...

7.5CVSS7.1AI score0.01266EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2017-17782

Malware in sbrugna...

5.3CVSS6.5AI score0.03568EPSS
Exploits4References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2020-16981

Malware in sbrugna...

7.5CVSS7.5AI score0.01266EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-17778

Malware in sbrugna...

8.8CVSS9.1AI score0.01873EPSS
Exploits5References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-17781

Malware in sbrugna...

6.1CVSS7AI score0.01756EPSS
Exploits5References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-17783

Malware in sbrugna...

8.1CVSS8.5AI score0.03712EPSS
Exploits5References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-17780

Malware in sbrugna...

6.1CVSS7AI score0.01794EPSS
Exploits5References5
RedhatCVE
RedhatCVEadded 2025/05/23 2:14 a.m.3 views

CVE-2023-49228

An issue was discovered in Peplink Balance Two before 8.4.0. Console port authentication uses hard-coded credentials, which allows an attacker with physical access and sufficient knowledge to execute arbitrary commands as root...

6.4CVSS7.8AI score0.00473EPSS
Exploits1References1
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.450 views

Peplink Balance Routers SQL Injection

class MetasploitModule 'Peplink Balance routers SQLi', 'Description' = %q Firmware versions up to 7.0.0-build1904 of Peplink Balance routers are affected by an unauthenticated SQL injection vulnerability in the bauth cookie, successful exploitation of the vulnerability allows an attacker to...

9.8CVSS7AI score0.61577EPSS
Exploits7
ATTACKERKB
ATTACKERKBadded 2023/12/28 4:15 a.m.2 views

CVE-2023-49229

An issue was discovered in Peplink Balance Two before 8.4.0. A missing authorization check in the administration web service allows read-only, unprivileged users to obtain sensitive information about the device configuration...

4.3CVSS5.8AI score0.00488EPSS
Exploits1References3
ATTACKERKB
ATTACKERKBadded 2023/12/28 4:15 a.m.2 views

CVE-2023-49230

An issue was discovered in Peplink Balance Two before 8.4.0. A missing authorization check in captive portals allows attackers to modify the portals' configurations without prior authentication...

8.8CVSS5.8AI score0.0205EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2023/12/28 4:15 a.m.2 views

CVE-2023-49228

An issue was discovered in Peplink Balance Two before 8.4.0. Console port authentication uses hard-coded credentials, which allows an attacker with physical access and sufficient knowledge to execute arbitrary commands as root...

6.4CVSS6.1AI score0.00473EPSS
Exploits1References3
OSV
OSVadded 2023/12/28 4:15 a.m.1 views

CVE-2023-49230

An issue was discovered in Peplink Balance Two before 8.4.0. A missing authorization check in captive portals allows attackers to modify the portals' configurations without prior authentication...

8.8CVSS5.8AI score0.0205EPSS
Exploits1References2
OSV
OSVadded 2023/12/28 4:15 a.m.1 views

CVE-2023-49228

An issue was discovered in Peplink Balance Two before 8.4.0. Console port authentication uses hard-coded credentials, which allows an attacker with physical access and sufficient knowledge to execute arbitrary commands as root...

6.4CVSS6AI score0.00473EPSS
Exploits1References2
OSV
OSVadded 2023/12/28 4:15 a.m.2 views

CVE-2023-49229

An issue was discovered in Peplink Balance Two before 8.4.0. A missing authorization check in the administration web service allows read-only, unprivileged users to obtain sensitive information about the device configuration...

4.3CVSS5.8AI score0.00488EPSS
Exploits1References2
NVD
NVDadded 2023/12/28 4:15 a.m.15 views

CVE-2023-49229

An issue was discovered in Peplink Balance Two before 8.4.0. A missing authorization check in the administration web service allows read-only, unprivileged users to obtain sensitive information about the device configuration...

4.3CVSS0.00488EPSS
Exploits1References2
NVD
NVDadded 2023/12/28 4:15 a.m.11 views

CVE-2023-49228

An issue was discovered in Peplink Balance Two before 8.4.0. Console port authentication uses hard-coded credentials, which allows an attacker with physical access and sufficient knowledge to execute arbitrary commands as root...

6.4CVSS0.00473EPSS
Exploits1References2
Rows per page
Query Builder