Lucene search
+L

11 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:27 a.m.10 views

CVE-2024-36061

EnGenius EWS356-FIT devices through 1.1.30 allow blind OS command injection. This allows an attacker to execute arbitrary OS commands via shell metacharacters to the Ping and Speed Test utilities...

9.8CVSS8.3AI score0.01068EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:22 a.m.6 views

CVE-2024-31975

EnGenius EWS356-Fit devices through 1.1.30 allow a remote attacker to conduct stored XSS attacks via the Wi-Fi SSID parameters. JavaScript embedded into a vulnerable field is executed when the user clicks the SSID field's corresponding EDIT button...

4.8CVSS6AI score0.00348EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/27 12:0 a.m.5 views

EnGenius EWS356-FIT 安全漏洞

The EnGenius EWS356-FIT is an indoor wireless access point from EnGenius. A security vulnerability exists in the EnGenius EWS356-FIT version 1.1.30 and prior versions. A remote attacker could exploit the vulnerability to execute arbitrary operating system commands via the controller connection...

8CVSS7.5AI score0.00964EPSS
Exploits0References1
NVD
NVD
added 2024/11/11 8:15 p.m.28 views

CVE-2024-36061

EnGenius EWS356-FIT devices through 1.1.30 allow blind OS command injection. This allows an attacker to execute arbitrary OS commands via shell metacharacters to the Ping and Speed Test utilities...

9.8CVSS0.01068EPSS
Exploits0References1
OSV
OSV
added 2024/11/11 8:15 p.m.5 views

CVE-2024-36061

EnGenius EWS356-FIT devices through 1.1.30 allow blind OS command injection. This allows an attacker to execute arbitrary OS commands via shell metacharacters to the Ping and Speed Test utilities...

9.8CVSS6AI score0.01068EPSS
Exploits0References1
CVE
CVE
added 2024/11/11 12:0 a.m.58 views

CVE-2024-36061

CVE-2024-36061 affects EnGenius EWS356-FIT devices (versions up to 1.1.30). The vulnerability is a blind OS command injection that lets an attacker execute arbitrary OS commands by injecting shell metacharacters into the Ping and Speed Test utilities. This could lead to full device compromise, de...

9.8CVSS8.3AI score0.01068EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/11/11 12:0 a.m.36 views

CVE-2024-36061

EnGenius EWS356-FIT devices through 1.1.30 allow blind OS command injection. This allows an attacker to execute arbitrary OS commands via shell metacharacters to the Ping and Speed Test utilities...

0.01068EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/11 12:0 a.m.6 views

EnGenius EWS356-FIT 安全漏洞

The EnGenius EWS356-FIT is an indoor wireless access point from EnGenius. A security vulnerability exists in the EnGenius EWS356-FIT version 1.1.30 and earlier. An attacker can exploit the vulnerability to execute arbitrary operating system commands via shell metacharacters to the Ping and Speed...

9.8CVSS7.5AI score0.01068EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/11 12:0 a.m.19 views

CVE-2024-36061

EnGenius EWS356-FIT devices through 1.1.30 allow blind OS command injection. This allows an attacker to execute arbitrary OS commands via shell metacharacters to the Ping and Speed Test utilities...

8.6AI score0.01068EPSS
Exploits0References1
OSV
OSV
added 2024/10/30 6:15 p.m.3 views

CVE-2024-31975

EnGenius EWS356-Fit devices through 1.1.30 allow a remote attacker to conduct stored XSS attacks via the Wi-Fi SSID parameters. JavaScript embedded into a vulnerable field is executed when the user clicks the SSID field's corresponding EDIT button...

4.8CVSS5.8AI score0.00348EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/30 12:0 a.m.8 views

PT-2024-24329 · Engenius · Engenius Ews356-Fit +1

Name of the Vulnerable Software and Affected Versions: EnGenius EWS356-Fit versions 1.1.30 and earlier EnGenius ESR580 versions 1.1.30 and earlier Description: The issue allows a remote attacker to conduct stored XSS attacks via the Wi-Fi SSID parameters. JavaScript embedded into a vulnerable fie...

4.8CVSS6.1AI score0.00348EPSS
Exploits0References4
Rows per page
Query Builder