Lucene search
K

5 matches found

Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/08/17 5:24 a.m.2 views

Huawei EchoLife HG8045Q vulnerable to OS command injection

Overview EchoLife HT8045Q provided by Huawei is an ONT Optical Network Terminal device. It is equipped with the command line interface for network operators' maintenance purpose, which is disabled by default. When the command line interface is enabled, operators can interact with a certain...

7.7CVSS6.9AI score0.00347EPSS
Exploits0References5
OSV
OSV
added 2021/06/25 7:15 p.m.5 views

CVE-2021-33530

In Weidmueller Industrial WLAN devices in multiple versions an exploitable command injection vulnerability exists in encrypted diagnostic script functionality of the devices. A specially crafted diagnostic script file can cause arbitrary busybox commands to be executed, resulting in remote contro...

8.8CVSS5.9AI score
Exploits0References1
CNVD
CNVD
added 2020/02/25 12:0 a.m.4 views

Moxa AWK-3131A Operating System Command Injection Vulnerability (CNVD-2020-13473)

Moxa AWK-3131A is a wireless access device from Moxa. An operating system command injection vulnerability exists in the Moxa AWK-3131A using firmware version 1.13. The vulnerability can be exploited to execute arbitrary busybox commands and take control of the device with the help of specially...

9.9CVSS8.3AI score0.05364EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.5 views

The vulnerability of the wget console program for downloading files over the network is related to the UNIX utility commands in the BusyBox. This vulnerability stems from the operation of writing data beyond the buffer limit into dynamic memory, allowing an attacker to compromise the integrity and accessibility of data, as well as to cause service failures.

The vulnerability of the wget console program for downloading files over the network is related to a buffer overflow vulnerability in dynamic memory. Exploiting this vulnerability allows an attacker to compromise the integrity and accessibility of data, as well as to cause service interruptions...

9.8CVSS7.3AI score0.32919EPSS
Exploits0References10Affected Software4
CNVD
CNVD
added 2017/09/06 12:0 a.m.2 views

Arris NVG589 and NVG599 AT&T U-verse Command Injection Vulnerabilities

The Arris NVG589 and NVG599 are both router products from the Arris Group of Companies in the U.S. The AT&T U-verse is the firmware used in... A security vulnerability exists in the AT&T U-verse version 9.2.2h0d83 in the Arris NVG589 and NVG599. A remote attacker can exploit the vulnerability by...

9.3CVSS8.5AI score0.04378EPSS
Exploits1References1
Rows per page
Query Builder