179 matches found
CVE-2022-45708
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the sPortMapIndex parameter in the formDelPortMapping function...
CVE-2022-45717
IP-COM M50 V15.11.0.3310768 was discovered to contain a command injection vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function. This vulnerability is exploited via a crafted GET request...
CVE-2022-45706
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the hostname parameter in the formSetNetCheckTools function...
CVE-2022-45716
CVE-2022-45716 affects IP-COM M50, version V15.11.0.33(10768). The vulnerability is a buffer overflow in the internal function formIPMacBindDel triggered via the indexSet parameter. CVSS v3.1 metrics in the sources show a CRITICAL base score (9.8) with network access, no user interaction, and imp...
CVE-2022-45709
IP-COM M50 V15.11.0.3310768 was discovered to contain multiple command injection vulnerabilities via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function...
PT-2022-27634 · Ip Com · Ip-Com M50
Name of the Vulnerable Software and Affected Versions: IP-COM M50 version 15.11.0.3310768 Description: The issue is related to multiple buffer overflows that can occur via the ip, mac, and remark parameters in the formIPMacBindModify function. Recommendations: For IP-COM M50 version...
CVE-2022-45710
CVE-2022-45710 affects IP-COM M50 router (V15.11.0.33(10768)). Multiple buffer overflows occur via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function. Exploitation details are not provided in the documents; the vulnerability is described as buffer overflows, with a high i...
CVE-2022-45706
IP-COM M50 router (version 15.11.0.33(10768)) has a buffer overflow in the formSetNetCheckTools function triggered via the hostname parameter. The issue is documented with high-severity impact (CVSS 3.1: CRITICAL) and is publicly discussed in multiple sources. A publicly disclosed mitigation sugg...
CVE-2022-45715
CVE-2022-45715 affects IP-COM M50 router (version 15.11.0.33(10768)). The issue is described as multiple buffer overflows in the function formSetPortMapping , exploitable via the parameters pLanPortRange and pWanPortRange . CVSS v3.1 metrics indicate a CRITICAL impact (_NETWORK attack; no privile...
CVE-2022-45718
CVE-2022-45718 affects IP-COM M50 (firmware version 15.11.0.33(10768)). The vulnerability is a buffer overflow triggered via the rules parameter in the formIPMacBindAdd function. Public details in the provided connected documents consistently describe the issue and affected platform, but there is...
CVE-2022-45716
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the indexSet parameter in the formIPMacBindDel function...
CVE-2022-45717
CVE-2022-45717 affects IP-COM M50 firmware (V15.11.0.33(10768)). The issue is a command injection in the USB partition handling via the usbPartitionName parameter in the formSetUSBPartitionUmount function, exploitable by a crafted GET request. Public documents indicate high-severity impact (CVE w...
CVE-2022-45707
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the rules parameter in the formAddDnsHijack function...
CVE-2022-45714
CVE-2022-45714 affects IP-COM M50 with firmware version 15.11.0.33(10768). The vulnerability is a buffer overflow in the indexSet parameter of the formQOSRuleDel function. CVSS 3.1 base score 9.8 (CRITICAL) indicates high impact on confidentiality, integrity, and availability, exploitable over th...
CVE-2022-45711
IP-COM M50 V15.11.0.3310768 was discovered to contain a command injection vulnerability via the hostname parameter in the formSetNetCheckTools function...
CVE-2022-45707
CVE-2022-45707 affects IP-COM M50, version 15.11.0.33(10768). A vulnerability in the formAddDnsHijack function allows a buffer overflow via the rules parameter . This is the root cause described across multiple sources. The CVSS v3.1 score is 9.8 (CRITICAL) with network attack vector, no privileg...
CVE-2022-45718
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the rules parameter in the formIPMacBindAdd function...
CVE-2022-45721
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the picName parameter in the formDelWewifiPic function...
CVE-2022-45712
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the rules parameter in the formAddDnsForward function...
CVE-2022-45708
CVE-2022-45708 affects IP-COM M50, version V15.11.0.33(10768). A vulnerability in the formDelPortMapping function’s sPortMapIndex parameter enables a buffer overflow. Impacted components include the port-mapping logic (buffer overflow) with potential baseline CVSS v3.1 score of 9.8 (CRITICAL) and...