PT-2024-20303 · Telefonica · Movistar 4G Router

Name of the Vulnerable Software and Affected Versions: Movistar 4G router version ES WLD71-T1 v2.0.201820 Description: The issue is a Cross-Site Request Forgery vulnerability that allows an attacker to force an end user to execute unwanted actions in a web application where they are currently...

EBYTE E880-IR01 Security Vulnerability

EBYTE E880-IR01 is a 4G wireless router from EBYTE, China. A security vulnerability exists in EBYTE E880-IR01 version V1.1. An attacker can exploit this vulnerability to obtain sensitive information via a specially crafted /cgi-bin/luci POST request...

Milesight UR32L 操作系统命令注入漏洞

The Milesight UR32L is a 4G industrial router from China's Milesight. A command injection vulnerability exists in the Milesight UR32L ysthirdparty checksystemuser function, which can be exploited by an attacker to execute arbitrary commands on the system...

Milesight UR32L 缓冲区错误漏洞

The Milesight UR32L is a 4G industrial router from China-based Milesight. A security vulnerability exists in the Milesight UR32L version v32.3.0.5, which stems from the use of an insecure sprintf pattern. An attacker could exploit the vulnerability to cause a buffer overflow via a specially craft...

TOTOLINK LR350 缓冲区错误漏洞

TOTOLINK LR350 is a 4G LTE router from China's Gion Electronics TOTOLINK that supports converting 4G signals to wired signals for home and office scenarios. A buffer overflow vulnerability exists in the TOTOLINK LR350. The vulnerability stems from a buffer overflow after authentication via the...