22 matches found
EUVD-2024-50258
Malicious code in bioql PyPI...
CVE-2024-9977
A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BRg5.61.11WVK.0b26. Affected is an unknown function of the file /cgi-bin/settings-firewall.cgi of the component Firewall Settings Page. The manipulation of the argument SrcInterface leads to os command injectio...
CVE-2024-9977 MitraStar GPT-2541GNAC Firewall Settings Page settings-firewall.cgi os command injection
A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BRg5.61.11WVK.0b26. Affected is an unknown function of the file /cgi-bin/settings-firewall.cgi of the component Firewall Settings Page. The manipulation of the argument SrcInterface leads to os command injectio...
CVE-2024-9977 MitraStar GPT-2541GNAC Firewall Settings Page settings-firewall.cgi os command injection
A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BRg5.61.11WVK.0b26. Affected is an unknown function of the file /cgi-bin/settings-firewall.cgi of the component Firewall Settings Page. The manipulation of the argument SrcInterface leads to os command injectio...
CVE-2024-9977
CVE-2024-9977 refers to a remote os command injection vulnerability in the MitraStar GPT-2541GNAC Firewall Settings Page, via the /cgi-bin/settings-firewall.cgi file. The attackable surface is the SrcInterface parameter, whose manipulation can lead to command execution on the device. Multiple sou...
PT-2024-39975 · Mitrastar · Mitrastar Gpt-2541Gnac
Name of the Vulnerable Software and Affected Versions: MitraStar GPT-2541GNAC BR g5.6 1.11WVK.0b26 Description: A critical issue was found in the Firewall Settings Page component, specifically in the /cgi-bin/settings-firewall.cgi file. The SrcInterface argument is vulnerable to os command...
MitraStar GPT-2541GNAC 操作系统命令注入漏洞
The MitraStar GPT-2541GNAC is a router from China-based MitraStar. The MitraStar GPT-2541GNAC suffers from an operating system command injection vulnerability that originates in the Firewall Settings Page component of /cgi-bin/settings-firewall.cgi that contains a command injection vulnerability...
CVE-2021-42165
MitraStar GPT-2541GNAC-N1 HGU 100VNZ0b33 devices allow remote authenticated users to obtain root access by executing command "deviceinfo show file &&/bin/bash" because of incorrect sanitization of parameter "path"...
CVE-2021-42165
MitraStar GPT-2541GNAC-N1 HGU 100VNZ0b33 devices allow remote authenticated users to obtain root access by executing command "deviceinfo show file &&/bin/bash" because of incorrect sanitization of parameter "path"...
CVE-2021-42165
CVE-2021-42165 concerns MitraStar GPT-2541GNAC-N1 (HGU) firmware version 100VNZ0b33. A vulnerability allows remote authenticated users to obtain root access by executing the command “deviceinfo show file &&/bin/bash” due to incorrect sanitization of the parameter “path.” This is a command-injecti...
CVE-2021-42165
MitraStar GPT-2541GNAC-N1 HGU 100VNZ0b33 devices allow remote authenticated users to obtain root access by executing command "deviceinfo show file &&/bin/bash" because of incorrect sanitization of parameter "path"...
Mitrastar GPT-2541GNAC-N1 - Privilege escalation Vulnerability
Exploit Title: Mitrastar GPT-2541GNAC-N1 - Privilege escalation Exploit Author: Leonardo Nicolas Servalli Vendor Homepage: www.mitrastar.com Platform: Mistrastar router devices GPT-2541GNAC-N1 HGU Tested on: Firmware BRg3.5100VNZ0b33 Vulnerability analysis:...
The vulnerability of the microprogrammed software of the GPT-2541GNAC and DSL-100HN-T1 routers, related to access control deficiencies, allows attackers to gain access to devices with root privileges.
The vulnerability of the microprogrammed software of the GPT-2541GNAC and DSL-100HN-T1 routers is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to devices with root privileges using the command “/bin/sh”...
MitraStar GPT-2541GNAC (HGU) and DSL-100HN-T1 Elevation of Privilege Vulnerability (CNVD-2017-33285)
The MitraStar GPT-2541GNAC HGU and DSL-100HN-T1 are both MitraStar router products. An elevation of privilege vulnerability exists in the MitraStar GPT-2541GNAC HGU version 1.00VNJ0b1 and the DSL-100HN-T1 ES113WJY0b16, which originates from the account zyad1234 with the password zyad1234. An...
MitraStar GPT-2541GNAC (HGU) and DSL-100HN-T1 Elevation of Privilege Vulnerability
The MitraStar GPT-2541GNAC HGU and DSL-100HN-T1 are both MitraStar router products. An elevation of privilege vulnerability exists in the MitraStar GPT-2541GNAC HGU version 1.00VNJ0b1 and DSL-100HN-T1 ES113WJY0b16. An attacker can exploit this vulnerability to gain root access by specifying /bin/...
CVE-2017-16522
MitraStar GPT-2541GNAC HGU 1.00VNJ0b1 and DSL-100HN-T1 ES113WJY0b16 devices allow remote authenticated users to obtain root access by specifying /bin/sh as the command to execute...
Design/Logic Flaw
MitraStar GPT-2541GNAC HGU 1.00VNJ0b1 and DSL-100HN-T1 ES113WJY0b16 devices allow remote authenticated users to obtain root access by specifying /bin/sh as the command to execute...
Design/Logic Flaw
MitraStar GPT-2541GNAC HGU 1.00VNJ0b1 and DSL-100HN-T1 ES113WJY0b16 devices have a zyad1234 password for the zyad1234 account, which is equivalent to root and undocumented...
CVE-2017-16522
CVE-2017-16522 affects MitraStar GPT-2541GNAC (HGU) and DSL-100HN-T1 devices (versions 1.00(VNJ0)b1 and ES_113WJY0b16). The vulnerability allows remote authenticated users to gain root access by specifying /bin/sh as the command to execute, indicating a privilege-escalation issue in the device co...
CVE-2017-16523
The CVE-2017-16523 entry describes an elevation-of-privilege issue in MitraStar router models MitraStar GPT-2541GNAC (HGU) 1.00(VNJ0)b1 and DSL-100HN-T1 ES_113WJY0b16. A Zyad1234 account password zyad1234 is undocumented and effectively grants root-level access. This vulnerability originates from...