Lucene search
K

106 matches found

CNNVD
CNNVD
added 2024/11/21 12:0 a.m.4 views

TOTOLINK EX200 安全漏洞

TOTOLINK EX200 is a 2.4G wireless N range extender from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK EX200 ssd parameter handling, which can be exploited by remote attackers to submit a special request that can be used to execute arbitrary commands in the...

6.3CVSS7.5AI score0.189EPSS
Exploits1References2
NVD
NVD
added 2024/10/11 10:15 p.m.22 views

CVE-2024-35522

Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operatingmode.cgi via the apmode parameter with ap24gmanual set to 1 and ap24gmanualsec set to NotNone...

8.4CVSS0.01803EPSS
Exploits1References1
OSV
OSV
added 2024/10/11 10:15 p.m.6 views

CVE-2024-35522

Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operatingmode.cgi via the apmode parameter with ap24gmanual set to 1 and ap24gmanualsec set to NotNone...

7.2CVSS5.8AI score0.01803EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/11 12:0 a.m.16 views

CVE-2024-35522

Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operatingmode.cgi via the apmode parameter with ap24gmanual set to 1 and ap24gmanualsec set to NotNone...

8.4CVSS0.01803EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/10/11 12:0 a.m.13 views

CVE-2024-35522

Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operatingmode.cgi via the apmode parameter with ap24gmanual set to 1 and ap24gmanualsec set to NotNone...

8.4CVSS7.3AI score0.01803EPSS
Exploits1References1
CVE
CVE
added 2024/10/11 12:0 a.m.58 views

CVE-2024-35522

The CVE-2024-35522 case is about NETGEAR EX3700 firmware prior to 1.0.0.98, which contains an authenticated command-injection vulnerability in the operating_mode.cgi script. The root cause is lack of input sanitization in the API handling the ap_mode/ap 24g manual controls (ap_mode parameter with...

8.4CVSS7.5AI score0.01803EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2024/08/01 12:0 a.m.1 views

TOTOLINK EX200 Buffer Overflow Vulnerability

The TOTOLINK EX200 is a 2.4G wireless N range extender designed to extend the coverage of existing Wi-Fi networks. A buffer overflow vulnerability exists in the TOTOLINK EX200. The vulnerability originates from the file /cgi-bin/cstecgi.cgi?action=save&setting The function getSaveConfig as...

9CVSS8.9AI score0.01157EPSS
Exploits1References1
CNVD
CNVD
added 2024/08/01 12:0 a.m.3 views

TOTOLINK EX200 Buffer Overflow Vulnerability

The TOTOLINK EX200 is a 2.4G wireless N range extender designed to extend the coverage of existing Wi-Fi networks. A buffer overflow vulnerability exists in the TOTOLINK EX200. The vulnerability originates from the function loginauth in the /cgi-bin/cstecgi.cgi file, which operates on the paramet...

9CVSS8.8AI score0.0127EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/07/25 12:0 a.m.7 views

The vulnerability of the HTTP-server of the microprogrammed Wi-Fi range extension software from Actiontec, the WCB6200Q, allows a hacker to execute arbitrary code.

The vulnerability of the HTTP-server of the microprogrammed Wi-Fi extension software from Actiontec, WCB6200Q, is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

8.8CVSS8.4AI score0.01119EPSS
Exploits0References3
CNVD
CNVD
added 2024/05/22 12:0 a.m.1 views

TOTOLINK EX200 Hardcoded Password Vulnerability

The TOTOLINK EX200 is a 2.4G wireless range extender from China's TOTOLINK. It is designed to extend the coverage of existing Wi-Fi networks and eliminate "blind spots". The TOTOLINK EX200 suffers from a hard-coded password vulnerability that originates from the /etc/shadow.sample file, which can...

9.8CVSS6.4AI score0.00615EPSS
Exploits1References1
CNVD
CNVD
added 2024/04/10 12:0 a.m.1 views

TOTOLINK EX200 getEasyWizardCfg Method Authorization Issue Vulnerability

TOTOLINK EX200 is a 2.4GHz wireless N range extender launched by China Gion Electronics, which is mainly used to extend the coverage of the existing Wi-Fi network and solve the problem of signal blind zones. TOTOLINK EX200 suffers from an authorization issue vulnerability, which can be exploited ...

7.5CVSS6.6AI score0.02702EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/08 12:0 a.m.4 views

TOTOLINK EX200 安全漏洞

TOTOLINK EX200 is a wireless N range extender from China Gion Electronics TOTOLINK , which is mainly used to extend the coverage of the existing Wi-Fi network and solve the problem of signal blind zones. A security vulnerability exists in TOTOLINK EX200, which stems from the fact that the...

8.4CVSS6.9AI score0.00203EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/08 12:0 a.m.5 views

TOTOLINK EX200 安全漏洞

TOTOLINK EX200 is a wireless N range extender from China Gion Electronics TOTOLINK , which is mainly used to extend the coverage of the existing Wi-Fi network and solve the problem of signal blind zones. A code execution vulnerability exists in the TOTOLINK EX200, which stems from the hostTime...

9.8CVSS8.1AI score0.01368EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/04/08 12:0 a.m.5 views

TOTOLINK EX200 安全漏洞

TOTOLINK EX200 is a wireless N range extender from China Gion Electronics TOTOLINK , which is mainly used to extend the coverage of the existing Wi-Fi network and solve the problem of signal blind zones. TOTOLINK EX200 suffers from an information disclosure vulnerability that stems from improper...

7.5CVSS6.3AI score0.5534EPSS
Exploits1References2
CNVD
CNVD
added 2024/01/16 12:0 a.m.20 views

TOTOLINK EX1200T Command Injection Vulnerability

TOTOLINK EX1200T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command injection vulnerability exists in TOTOLINK EX1200T version V4.1.2cu.5232B20210713, which stems from the main method failing to properly filter construct command special characters, commands, and so on. An...

9.8CVSS7.7AI score0.01626EPSS
Exploits1References1
CNVD
CNVD
added 2024/01/03 12:0 a.m.7 views

TOTOLINK EX1800T setRebootScheCfg Interface Command Execution Vulnerability

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T setRebootScheCfg interface. The vulnerability stems from the failure of the hour parameter of the setRebootScheCfg interface of cstecgi .cgi to...

9.8CVSS7.7AI score0.01049EPSS
Exploits1References1
CNVD
CNVD
added 2024/01/03 12:0 a.m.8 views

TOTOLINK EX1800T setNtpCfg Interface Command Execution Vulnerability

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T setNtpCfg interface. The vulnerability stems from the failure of the tz parameter of the setNtpCfg interface of cstecgi .cgi to properly filter...

9.8CVSS7.7AI score0.0097EPSS
Exploits1References1
CNVD
CNVD
added 2024/01/03 12:0 a.m.11 views

TOTOLINK EX1800T langType Parameter Command Execution Vulnerability

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T langType parameter. An attacker can exploit this vulnerability to execute arbitrary commands on the system...

9.8CVSS7.7AI score0.0097EPSS
Exploits1References1
CNVD
CNVD
added 2024/01/03 12:0 a.m.9 views

TOTOLINK EX1800T setPasswordCfg Interface Command Execution Vulnerability

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T setPasswordCfg interface, which originates from the failure of the admuser parameter of the cstecgi .cgi's setPasswordCfg interface to correctly...

9.8CVSS7.7AI score0.01049EPSS
Exploits1References1
CNVD
CNVD
added 2024/01/03 12:0 a.m.5 views

TOTOLINK EX1800T setRptWizardCfg Interface Command Execution Vulnerability

The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T setRptWizardCfg interface, which originates from the merge parameter of the cstecgi .cgi's setRptWizardCfg interface that fails to correctly filt...

9.8CVSS7.7AI score0.0097EPSS
Exploits1References1
Rows per page
Query Builder