Lucene search
K

7 matches found

Cvelist
Cvelist
added 2026/06/15 4:30 a.m.43 views

CVE-2026-12219 Yealink SIP-T46U Web FastCGI Service start mod_diagnose.CommandShellByType command injection

A flaw has been found in Yealink SIP-T46U 108.86.0.118. The impacted element is the function moddiagnose.CommandShellByType of the file /api/diagnosis/start of the component Web FastCGI Service. This manipulation of the argument Time causes command injection. The attack can be initiated remotely...

6.5CVSS0.0105EPSS
Exploits0References5
OSV
OSV
added 2023/03/03 1:15 p.m.6 views

CVE-2022-45551

An issue discovered in Shenzhen Zhiboton Electronics ZBT WE1626 Router v 21.06.18 allows attackers to escalate privileges via WGET command to the Network Diagnosis endpoint...

9.8CVSS5.8AI score0.23457EPSS
Exploits0References3
NVD
NVD
added 2023/03/03 1:15 p.m.32 views

CVE-2022-45551

An issue discovered in Shenzhen Zhiboton Electronics ZBT WE1626 Router v 21.06.18 allows attackers to escalate privileges via WGET command to the Network Diagnosis endpoint...

9.8CVSS9.7AI score0.23457EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/03/03 12:0 a.m.5 views

PT-2023-14702 · Shenzhen Zhiboton Electronics · Zbt We1626 Router

Name of the Vulnerable Software and Affected Versions: Shenzhen Zhiboton Electronics ZBT WE1626 Router version 21.06.18 Description: An issue in the router allows attackers to escalate privileges via the WGET command to the "Network Diagnosis" endpoint. Recommendations: For Shenzhen Zhiboton...

9.8CVSS9.6AI score0.23457EPSS
Exploits0References6
CVE
CVE
added 2023/03/03 12:0 a.m.59 views

CVE-2022-45551

CVE-2022-45551 concerns Shenzhen Zhiboton Electronics ZBT WE1626 Router (version 21.06.18). The issue allows attackers to escalate privileges via the WGET command to the router’s Network Diagnosis endpoint. Affected component/flow appears to be the URL used for network diagnosis, with root cause ...

9.8CVSS9.5AI score0.23457EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/03/03 12:0 a.m.41 views

CVE-2022-45551

An issue discovered in Shenzhen Zhiboton Electronics ZBT WE1626 Router v 21.06.18 allows attackers to escalate privileges via WGET command to the Network Diagnosis endpoint...

9.9AI score0.23457EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/08/31 12:0 a.m.4 views

PT-2022-23828 · D Link · D-Link Dir-878 +1

Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 versions A2 v1.10CNB04 D-Link DIR-878 version DIR 878 FW1.30B08 Description: A command injection issue occurs in the /goform/Diagnosis endpoint, where the setnum variable is spliced into v10 by snprintf, allowing system executi...

9.8CVSS9.7AI score0.26335EPSS
Exploits1References8
Rows per page
Query Builder