179 matches found
Buffer overflow
IP-COM M50 V15.11.0.3310768 was discovered to contain multiple buffer overflows via the ip, mac, and remark parameters in the formIPMacBindModify function...
CVE-2022-45707
CVE-2022-45707 affects IP-COM M50, version 15.11.0.33(10768). A vulnerability in the formAddDnsHijack function allows a buffer overflow via the rules parameter . This is the root cause described across multiple sources. The CVSS v3.1 score is 9.8 (CRITICAL) with network attack vector, no privileg...
CVE-2022-45710
CVE-2022-45710 affects IP-COM M50 router (V15.11.0.33(10768)). Multiple buffer overflows occur via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function. Exploitation details are not provided in the documents; the vulnerability is described as buffer overflows, with a high i...
CVE-2022-45715
CVE-2022-45715 affects IP-COM M50 router (version 15.11.0.33(10768)). The issue is described as multiple buffer overflows in the function formSetPortMapping , exploitable via the parameters pLanPortRange and pWanPortRange . CVSS v3.1 metrics indicate a CRITICAL impact (_NETWORK attack; no privile...
CVE-2022-45708
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the sPortMapIndex parameter in the formDelPortMapping function...
CVE-2022-45718
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the rules parameter in the formIPMacBindAdd function...
IP-COM M50 安全漏洞
The IP-COM M50 is a wireless router from IP-COM USA. A security vulnerability exists in IP-COM M50 version V15.11.0.3310768, which stems from the discovery of a buffer overflow vulnerability via the gotoUrl parameter in the formPortalAuth function...
IP-COM M50 安全漏洞
The IP-COM M50 is a wireless router from IP-COM USA. A security vulnerability exists in IP-COM M50 version V15.11.0.3310768, which stems from the discovery of a contained buffer overflow vulnerability via the indexSet parameter in the formQOSRuleDel function...
CVE-2022-45706
IP-COM M50 router (version 15.11.0.33(10768)) has a buffer overflow in the formSetNetCheckTools function triggered via the hostname parameter. The issue is documented with high-severity impact (CVSS 3.1: CRITICAL) and is publicly discussed in multiple sources. A publicly disclosed mitigation sugg...
CVE-2022-45707
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the rules parameter in the formAddDnsHijack function...
CVE-2022-45718
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the rules parameter in the formIPMacBindAdd function...
CVE-2022-45714
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the indexSet parameter in the formQOSRuleDel function...
CVE-2022-45721
The CVE-2022-45721 entry concerns IP-COM M50 firmware version 15.11.0.33(10768), where a buffer overflow can be triggered via the picName parameter in the formDelWewifiPic function. The vulnerability is documented with a high impact (CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, base score 9.8)...
CVE-2022-45712
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the rules parameter in the formAddDnsForward function...
IP-COM M50 安全漏洞
IP-COM M50 is a wireless router from IP-COM USA. A security vulnerability exists in IP-COM M50 version V15.11.0.3310768, which stems from the discovery of a buffer overflow vulnerability containing multiple buffer overflows via the ip, mac, and mark parameters in the formIPMacBindModify function...
PT-2022-27632 · Ip Com · Ip-Com M50
Name of the Vulnerable Software and Affected Versions: IP-COM M50 version 15.11.0.3310768 Description: A buffer overflow issue was discovered via the gotoUrl parameter in the formPortalAuth function. Recommendations: For IP-COM M50 version 15.11.0.3310768, as a temporary workaround, consider...
CVE-2022-45721
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the picName parameter in the formDelWewifiPic function...
CVE-2022-45714
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the indexSet parameter in the formQOSRuleDel function...
CVE-2022-45717
IP-COM M50 V15.11.0.3310768 was discovered to contain a command injection vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function. This vulnerability is exploited via a crafted GET request...
CVE-2022-45710
IP-COM M50 V15.11.0.3310768 was discovered to contain multiple buffer overflows via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function...