Lucene search
K

24 matches found

NVD
NVD
added 2024/10/21 9:15 p.m.17 views

CVE-2024-40089

A Command Injection vulnerability in Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, authenticated attackers to execute arbitrary code by injecting shell commands into the name of the Vilo device...

9.1CVSS0.01193EPSS
Exploits1References1
NVD
NVD
added 2024/10/21 9:15 p.m.20 views

CVE-2024-40088

A Directory Traversal vulnerability in the Boa webserver of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to enumerate the existence and length of any file in the filesystem by placing malicious payloads in the path of any HTTP request...

5.3CVSS0.00682EPSS
Exploits1References1
NVD
NVD
added 2024/10/21 9:15 p.m.31 views

CVE-2024-40083

A Buffer Overflow vulnerabilty in the localappsetroutertoken function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via sscanf reading the token and timezone JSON fields into a fixed-length buffer...

9.6CVSS0.00394EPSS
Exploits1References1
NVD
NVD
added 2024/10/21 9:15 p.m.39 views

CVE-2024-40085

A Buffer Overflow vulnerability in the localappsetrouterwan function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via pppoeusername and pppoepassword fields being larger than 128 bytes in length...

9.6CVSS0.00595EPSS
Exploits1References1
NVD
NVD
added 2024/10/21 9:15 p.m.29 views

CVE-2024-40086

A Buffer Overflow vulnerability in the localappsetrouterwifiSSIDPWD function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via a password field larger than 64 bytes in length...

9.6CVSS0.00595EPSS
Exploits1References1
NVD
NVD
added 2024/10/21 9:15 p.m.27 views

CVE-2024-40084

A Buffer Overflow in the Boa webserver of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via exceptionally long HTTP methods or paths...

9.6CVSS0.00595EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.21 views

CVE-2024-40088

A Directory Traversal vulnerability in the Boa webserver of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to enumerate the existence and length of any file in the filesystem by placing malicious payloads in the path of any HTTP request...

0.00682EPSS
Exploits1References1
CVE
CVE
added 2024/10/21 12:0 a.m.53 views

CVE-2024-40085

CVE-2024-40085 affects Vilo 5 Mesh WiFi System versions

9.6CVSS8.1AI score0.00595EPSS
Exploits1References1
CVE
CVE
added 2024/10/21 12:0 a.m.58 views

CVE-2024-40083

CVE-2024-40083 is a buffer overflow in Vilo 5 Mesh WiFi System

9.6CVSS8AI score0.00394EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.25 views

CVE-2024-40087

Vilo 5 Mesh WiFi System = 5.16.1.33 is vulnerable to Insecure Permissions. Lack of authentication in the custom TCP service on port 5432 allows remote, unauthenticated attackers to gain administrative access over the router...

0.00356EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.30 views

CVE-2024-40084

A Buffer Overflow in the Boa webserver of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via exceptionally long HTTP methods or paths...

0.00595EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/10/21 12:0 a.m.13 views

CVE-2024-40083

A Buffer Overflow vulnerabilty in the localappsetroutertoken function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via sscanf reading the token and timezone JSON fields into a fixed-length buffer...

8AI score0.00394EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.23 views

CVE-2024-40083

A Buffer Overflow vulnerabilty in the localappsetroutertoken function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via sscanf reading the token and timezone JSON fields into a fixed-length buffer...

0.00394EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/10/21 12:0 a.m.13 views

CVE-2024-40091

Vilo 5 Mesh WiFi System = 5.16.1.33 lacks authentication in the Boa webserver, which allows remote, unauthenticated attackers to retrieve logs with sensitive system...

7.1AI score0.00377EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/10/21 12:0 a.m.13 views

CVE-2024-40085

A Buffer Overflow vulnerability in the localappsetrouterwan function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via pppoeusername and pppoepassword fields being larger than 128 bytes in length...

8AI score0.00595EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.25 views

CVE-2024-40085

A Buffer Overflow vulnerability in the localappsetrouterwan function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via pppoeusername and pppoepassword fields being larger than 128 bytes in length...

0.00595EPSS
Exploits1References1
CVE
CVE
added 2024/10/21 12:0 a.m.59 views

CVE-2024-40084

CVE-2024-40084 describes a remote, unauthenticated buffer overflow in the Boa webserver used by the Vilo 5 Mesh WiFi System (versions

9.6CVSS8.1AI score0.00595EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/21 12:0 a.m.15 views

CVE-2024-40086

A Buffer Overflow vulnerability in the localappsetrouterwifiSSIDPWD function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via a password field larger than 64 bytes in length...

8.1AI score0.00595EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.19 views

CVE-2024-40089

A Command Injection vulnerability in Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, authenticated attackers to execute arbitrary code by injecting shell commands into the name of the Vilo device...

0.01193EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/10/21 12:0 a.m.14 views

CVE-2024-40088

A Directory Traversal vulnerability in the Boa webserver of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to enumerate the existence and length of any file in the filesystem by placing malicious payloads in the path of any HTTP request...

5.3AI score0.00682EPSS
Exploits1References2
Rows per page
Query Builder