16 matches found
CVE-2024-48440
Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA RG500UEAABxCOMSLICv3.2.2543.12.18 was discovered to contain a command injection vulnerability via the component atcommand.asp...
CVE-2024-48441
Wuhan Tianyu Information Industry Co., Ltd Tianyu CPE Router CommonCPExCPETSv3.2.468.11.04P4 was discovered to contain a command injection vulnerability via the component atcommand.asp...
Tianyu CPE Router CommonCPExCPETS Command Execution Vulnerability
Tianyu CPE Router is a wireless router from China Tianyu Tianyu. A command execution vulnerability exists in the Tianyu CPE Router CommonCPExCPETS, which can be exploited by an attacker to execute arbitrary commands on the system...
CVE-2024-48440
Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA RG500UEAABxCOMSLICv3.2.2543.12.18 was discovered to contain a command injection vulnerability via the component atcommand.asp...
CVE-2024-48441
Wuhan Tianyu Information Industry Co., Ltd Tianyu CPE Router CommonCPExCPETSv3.2.468.11.04P4 was discovered to contain a command injection vulnerability via the component atcommand.asp...
CVE-2024-48442
Incorrect access control in Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA RG500UEAABxCOMSLICv3.2.2543.12.18 allows attackers to access the SSH protocol without authentication...
PT-2024-33112 · Tianyu · Tianyu Cpe Router
Name of the Vulnerable Software and Affected Versions: Tianyu CPE Router version CommonCPExCPETS v3.2.468.11.04 P4 Description: A command injection issue was discovered in the Tianyu CPE Router, specifically via the component at command.asp. Recommendations: For version CommonCPExCPETS...
CVE-2024-48440
Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA RG500UEAABxCOMSLICv3.2.2543.12.18 was discovered to contain a command injection vulnerability via the component atcommand.asp...
CVE-2024-48440
The CVE-2024-48440 entry affects Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA (RG500UEAABxCOMSLICv3.2.2543.12.18) and is caused by a command injection vulnerability in the at_command.asp component. Public data lists CVSSv3.1 metrics: AV Adjacent, AC Low, PR None, UI None,...
CVE-2024-48442
CVE-2024-48442 affects Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA RG500UEAABxCOMSLIC, version 3.2.2543.12.18. Root cause is an incorrect access control that allows unauthenticated SSH access. Reported impact is confidentiality exposure via SSH without authentication; no...
CVE-2024-48440
Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA RG500UEAABxCOMSLICv3.2.2543.12.18 was discovered to contain a command injection vulnerability via the component atcommand.asp...
CVE-2024-48441
Wuhan Tianyu Information Industry Co., Ltd Tianyu CPE Router CommonCPExCPETSv3.2.468.11.04P4 was discovered to contain a command injection vulnerability via the component atcommand.asp...
CVE-2024-48442
Incorrect access control in Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA RG500UEAABxCOMSLICv3.2.2543.12.18 allows attackers to access the SSH protocol without authentication...
CVE-2024-48441
The CVE-2024-48441 issue affects the Tianyu CPE Router CommonCPExCPETS version v3.2.468.11.04_P4, specifically the at_command.asp component, where a command-injection vulnerability exists. The root cause is input handling in at_command.asp that allows arbitrary commands to be executed with high i...
CVE-2024-48442
Incorrect access control in Shenzhen Tuoshi Network Communications Co.,Ltd 5G CPE Router NR500-EA RG500UEAABxCOMSLICv3.2.2543.12.18 allows attackers to access the SSH protocol without authentication...
The vulnerability of Zyxel 5G NR/4G LTE CPE router’s micro-programming software arises from the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows a hacker to execute arbitrary commands.
The vulnerability of Zyxel 5G NR/4G LTE CPE routers’ microprogramming software exists due to the lack of measures taken to neutralize the special elements used in the operating system’s commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands using a speciall...