3 matches found
CVE-2019-25470
eWON Firmware versions 12.2 to 13.0 contain an authentication bypass vulnerability that allows attackers with minimal privileges to retrieve sensitive user data by exploiting the wsdReadForm endpoint. Attackers can send POST requests to /wrcgi.bin/wsdReadForm with base64-encoded partial credentia...
CVE-2019-25470 eWON Firmware 12.2-13.0 Authentication Bypass via wsdReadForm
eWON Firmware versions 12.2 to 13.0 contain an authentication bypass vulnerability that allows attackers with minimal privileges to retrieve sensitive user data by exploiting the wsdReadForm endpoint. Attackers can send POST requests to /wrcgi.bin/wsdReadForm with base64-encoded partial credentia...
PT-2023-21349 · Unknown · Ixp Data Easy Install
Name of the Vulnerable Software and Affected Versions: IXP Data Easy Install version 6.6.14884.0 Description: An issue in IXP Data Easy Install allows a local attacker to gain privileges via a static XOR key. This issue enables a local attacker to escalate privileges. Recommendations: For IXP Dat...