Lucene search
K

26 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:26 p.m.11 views

CVE-2021-30233

The api/ZRIptv/setIptvInfo interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the iptvvlan parameter...

9.8CVSS8AI score0.0327EPSS
Exploits1References1
OSV
OSV
added 2022/01/18 1:15 p.m.7 views

CVE-2021-33965

China Mobile An Lianbao WF-1 V1.0.1 router provides a web interface /api/ZRMesh/setZRMesh which receives parameters by POST request, and the parameter meshenable and meshdevice have a command injection vulnerability. An attacker can use the vulnerability to execute remote commands...

8.8CVSS7.5AI score0.02871EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/01/18 12:0 a.m.6 views

China Mobile An Lianbao WF-1 router命令注入漏洞

China Mobile An Lianbao WF-1 router is a router from China Mobile China. A security vulnerability exists in China Mobile An Lianbao WF-1 V1.0.1, which can be exploited by an attacker to execute remote commands...

8.8CVSS8.1AI score0.02871EPSS
Exploits0References5
OSV
OSV
added 2022/01/15 10:15 a.m.4 views

CVE-2021-33963

China Mobile An Lianbao WF-1 v1.0.1 router web interface through /api/ZRMacClone/macaddrclone receives parameters by POST request, and the parameter macType has a command injection vulnerability. An attacker can use the vulnerability to execute remote commands...

9.8CVSS6AI score
Exploits0References4
CNNVD
CNNVD
added 2022/01/15 12:0 a.m.6 views

China Mobile An Lianbao WF-1 router命令注入漏洞

China Mobile An Lianbao WF-1 router is a router from China Mobile, a Chinese company. A security vulnerability exists in the China Mobile An Lianbao WF-1 router, which originates from a command injection vulnerability in the web interface of the China Mobile An Lianbao WF-1 v1.0.1 router via a PO...

10CVSS8.6AI score0.03071EPSS
Exploits0References5
NVD
NVD
added 2022/01/14 12:15 p.m.28 views

CVE-2021-33962

China Mobile An Lianbao WF-1 router v1.0.1 is affected by an OS command injection vulnerability in the web interface /api/ZRUsb/popusbdevice component...

10CVSS0.03708EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/01/14 12:0 a.m.6 views

China Mobile An Lianbao WF-1 router 操作系统命令注入漏洞

China Mobile An Lianbao WF-1 router is a router from China Mobile China. A security vulnerability exists in China Mobile An Lianbao WF-1 router version v1.0.1, which stems from a lack of command filtering and escaping in the web interface/api/ZRUsb/popusbdevice component, resulting in an operatin...

10CVSS8.4AI score0.03708EPSS
Exploits0References5
NVD
NVD
added 2021/04/29 4:15 p.m.25 views

CVE-2021-30232

The api/ZRIGMP/setIGMPPROXY interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the IGMPPROXYWANCONNECT parameter...

9.8CVSS0.0327EPSS
Exploits1References3
OSV
OSV
added 2021/04/29 4:15 p.m.7 views

CVE-2021-30232

The api/ZRIGMP/setIGMPPROXY interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the IGMPPROXYWANCONNECT parameter...

9.8CVSS6AI score
Exploits0References3
OSV
OSV
added 2021/04/29 4:15 p.m.5 views

CVE-2021-30230

The api/ZRFirmware/settimezone interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the zonename parameter...

9.8CVSS7.6AI score0.0327EPSS
Exploits1References3
NVD
NVD
added 2021/04/29 4:15 p.m.13 views

CVE-2021-30231

The api/zrDm/setZRElink interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the bssaddr, abiaddr, devtoken, devid, elinksync, or elinkprocenable parameter...

9.8CVSS0.0327EPSS
Exploits1References3
NVD
NVD
added 2021/04/29 4:15 p.m.18 views

CVE-2021-30233

The api/ZRIptv/setIptvInfo interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the iptvvlan parameter...

9.8CVSS0.0327EPSS
Exploits1References3
OSV
OSV
added 2021/04/29 4:15 p.m.3 views

CVE-2021-30228

The api/ZRAndlink/setZRAndlink interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the iandlinkprocenable parameter...

9.8CVSS7.6AI score0.0327EPSS
Exploits1References3
Prion
Prion
added 2021/04/29 4:15 p.m.15 views

Code injection

The api/ZRIGMP/setMLDPROXY interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the MLDPROXYWANCONNECT parameter...

7.5CVSS9.7AI score0.0327EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2021/04/29 4:15 p.m.15 views

Code injection

The api/zrDm/setzrDm interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the dmenable, AppKey, or Pwd parameter...

6.5CVSS9AI score0.02884EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2021/04/29 4:15 p.m.11 views

Code injection

The api/zrDm/setZRElink interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the bssaddr, abiaddr, devtoken, devid, elinksync, or elinkprocenable parameter...

7.5CVSS9.7AI score0.0327EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2021/04/29 3:44 p.m.48 views

CVE-2021-30234

CVE-2021-30234 affects China Mobile An Lianbao WF-1 router (version 1.0.1). The vulnerability resides in api/ZRIGMP/set_MLD_PROXY and allows remote command execution by passing shell metacharacters in the MLD_PROXY_WAN_CONNECT parameter. Documented CVSSv3.1 severity is 9.8 (CRITICAL) with network...

9.8CVSS9.8AI score0.0327EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2021/04/29 3:44 p.m.27 views

CVE-2021-30234

The api/ZRIGMP/setMLDPROXY interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the MLDPROXYWANCONNECT parameter...

10AI score0.0327EPSS
Exploits1References3
Cvelist
Cvelist
added 2021/04/29 3:44 p.m.20 views

CVE-2021-30229

The api/zrDm/setzrDm interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the dmenable, AppKey, or Pwd parameter...

9.2AI score0.02884EPSS
Exploits1References3
Cvelist
Cvelist
added 2021/04/29 3:44 p.m.17 views

CVE-2021-30230

The api/ZRFirmware/settimezone interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the zonename parameter...

10AI score0.0327EPSS
Exploits1References3
Rows per page
Query Builder