Lucene search
K

8 matches found

EUVD
EUVD
added 2026/04/02 6:31 p.m.9 views

EUVD-2026-18362

A weakness has been identified in Trendnet TEW-657BRM 1.00.1. This affects the function addwpsclient of the file /setup.cgi. This manipulation of the argument wlenroleepin causes os command injection. The attack may be initiated remotely. The exploit has been made available to the public and coul...

6.5CVSS6.4AI score0.04457EPSS
Exploits1References5
NVD
NVD
added 2026/04/02 4:16 p.m.10 views

CVE-2026-5351

A weakness has been identified in Trendnet TEW-657BRM 1.00.1. This affects the function addwpsclient of the file /setup.cgi. This manipulation of the argument wlenroleepin causes os command injection. The attack may be initiated remotely. The exploit has been made available to the public and coul...

8.8CVSS0.04457EPSS
Exploits1References4
CNVD
CNVD
added 2025/07/11 12:0 a.m.4 views

Belkin F9K1122 Stack Buffer Overflow Vulnerability (CNVD-2025-20837)

The Belkin F9K1122 is a WiFi signal extender from Belkin Canada. The Belkin F9K1122 suffers from a stack buffer overflow vulnerability that originates from the incorrect operation of the parameter wpsenroleepin/webpage in the file /goform/formWlanSetupWPS, no details of the vulnerability are...

9CVSS9AI score0.04092EPSS
Exploits1References1
OSV
OSV
added 2025/07/06 8:15 p.m.4 views

CVE-2025-7092

A vulnerability has been found in Belkin F9K1122 1.00.33 and classified as critical. This vulnerability affects the function formWlanSetupWPS of the file /goform/formWlanSetupWPS of the component webs. The manipulation of the argument wpsenroleepin/webpage leads to stack-based buffer overflow. Th...

8.7CVSS6.5AI score0.04092EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2022/03/15 10:15 p.m.1 views

CVE-2022-26998

Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the wps setting function via the wpsenroleepin parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

10CVSS6.1AI score0.03453EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/03/15 9:56 p.m.25 views

CVE-2022-26998

Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the wps setting function via the wpsenroleepin parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

10AI score0.03453EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/03/15 12:0 a.m.5 views

ARRIS TR3300 命令注入漏洞

ARRIS TR3300 is an 802.11ac Wi-Fi router from ARRIS U.S.A. A command injection vulnerability exists in ARRIS TR3300 v1.0.13, which stems from the failure of the wpsenroleepin parameter in the wps function to properly filter the construct command special characters, commands, etc. An attacker coul...

10CVSS6AI score0.03453EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/03/15 12:0 a.m.6 views

PT-2022-18174 · Arris · Arris Tr3300

Name of the Vulnerable Software and Affected Versions: Arris TR3300 version 1.0.13 Description: The issue is related to a command injection vulnerability in the wps setting function. This vulnerability is exploited via the wps enrolee pin parameter, allowing attackers to execute arbitrary command...

10CVSS9.7AI score0.03453EPSS
Exploits1References3
Rows per page
Query Builder