Lucene search
K

190 matches found

CNNVD
CNNVD
added 2021/11/15 12:0 a.m.7 views

Lantronix PremierWave 2050 操作系统命令注入漏洞

The Lantronix PremierWave 2050 is an embedded enterprise Wi-Fi module from Lantronix, Inc. The Lantronix PremierWave 2050 in version 8.9.0.0R4 contains a security vulnerability that originates when the Web Manager wireless network scanner feature fails to properly filter special characters,...

9.9CVSS6AI score0.37064EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/11/15 12:0 a.m.4 views

Lantronix PremierWave 2050 操作系统命令注入漏洞

The Lantronix PremierWave 2050 is an embedded enterprise Wi-Fi module from Lantronix, Inc. The Lantronix PremierWave 2050 is vulnerable to an operating system command injection vulnerability that could be exploited by attackers to cause arbitrary command execution...

9.1CVSS6AI score0.02915EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/11/15 12:0 a.m.6 views

Lantronix PremierWave 2050 缓冲区错误漏洞

The Lantronix PremierWave 2050 is an embedded enterprise Wi-Fi module from Lantronix, Inc. The Lantronix PremierWave 2050 in version 8.9.0.0R4 is vulnerable to a stack buffer overflow vulnerability that could be exploited by attackers to cause remote code execution...

9.9CVSS6.5AI score0.02845EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/11/15 12:0 a.m.6 views

Lantronix PremierWave 操作系统命令注入漏洞

The Lantronix PremierWave 2050 is an embedded enterprise Wi-Fi module from Lantronix, Inc. The Lantronix PremierWave 2050 is vulnerable to an operating system command injection vulnerability that could be exploited by attackers to cause arbitrary command execution...

9.9CVSS6AI score0.06061EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/11/15 12:0 a.m.6 views

Lantronix PremierWave 2050 操作系统命令注入漏洞

The Lantronix PremierWave 2050 is an embedded Wi-Fi module manufactured by Lantronix.The Web Manager FsTFtp feature of the Lantronix PremierWave 2050 8.9.0.0R4 is vulnerable to an operating system command injection vulnerability that could be exploited by an attacker with a specially crafted HTTP...

9.1CVSS6.1AI score0.02694EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/11/15 12:0 a.m.4 views

Lantronix PremierWave 2050 操作系统命令注入漏洞

The Lantronix PremierWave 2050 is an embedded enterprise Wi-Fi module from Lantronix, Inc. Used to provide reliable and always-on 5G Wi-Fi connectivity, the Lantronix PremierWave 2050 in version 8.9.0.0R4 is vulnerable to OS command injection, which can be exploited by attackers to execute...

9.1CVSS6AI score0.02694EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/11/15 12:0 a.m.6 views

Lantronix PremierWave 2050 缓冲区错误漏洞

The Lantronix PremierWave 2050 is an embedded enterprise Wi-Fi module from Lantronix, Inc. The Lantronix PremierWave 2050 has a security vulnerability that could be exploited by an attacker to cause remote code execution...

9.1CVSS6.2AI score0.02989EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/11/15 12:0 a.m.6 views

Lantronix PremierWave 2050 路径遍历漏洞

The Lantronix PremierWave 2050 is an embedded enterprise Wi-Fi module from Lantronix, Inc. The Lantronix PremierWave 2050 version 8.9.0.0R4 is vulnerable to a path traversal vulnerability caused by a lack of filtering and escaping of path parameters by the Web Manager FSBrowsePage feature. An...

4.3CVSS5.7AI score0.01876EPSS
Exploits1References3
Talos
Talos
added 2021/11/15 12:0 a.m.42 views

Lantronix PremierWave 2050 Web Manager SSL Credential Upload OS command injection vulnerabilities

Summary Multiple OS command injection vulnerabilities exist in the Web Manager SSL Credential Upload functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger these...

9.1CVSS10AI score0.02915EPSS
Exploits3
Positive Technologies
Positive Technologies
added 2021/11/15 12:0 a.m.4 views

PT-2021-7560 · Lantronix · Lantronix Premierwave 2050

Name of the Vulnerable Software and Affected Versions: Lantronix PremierWave 2050 affected versions not specified Description: A specially-crafted HTTP request can lead to arbitrary command execution in the keypasswd parameter. An attacker can make an authenticated HTTP request to trigger this...

9.1CVSS9.4AI score0.02915EPSS
Exploits1References4
Rows per page
Query Builder