33 matches found
CVE-2022-37661
SmartRG SR506n 2.5.15 and SR510n 2.6.13 routers are vulnerable to Remote Code Execution RCE via the ping host feature...
CVE-2022-35908
Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent...
CVE-2022-35908
Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent...
CVE-2022-35908
Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent...
Code injection
Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent...
PT-2023-13452 · Cambium · Cambium Enterprise Wi-Fi System
Name of the Vulnerable Software and Affected Versions: Cambium Enterprise Wi-Fi System Software versions prior to 6.4.2 Description: The issue is related to the lack of sanitization of the ping host argument in the device-agent of the Cambium Enterprise Wi-Fi System Software. This can potentially...
Cambium Networks Enterprise Wi-Fi System Software Security Vulnerability
Cambium Networks Enterprise Wi-Fi System Software is a simple yet sophisticated platform and tool for planning, deploying, and managing networks from Cambium Networks, USA. A security vulnerability exists in Cambium Networks Enterprise Wi-Fi System Software versions prior to 6.4.2 that stems from...
CVE-2022-35908
Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent...
CVE-2022-35908
Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent...
CVE-2022-35908
The CVE-2022-35908 affects Cambium Enterprise Wi‑Fi System Software prior to 6.4.2. Root cause: the device-agent does not sanitize the ping host argument. Impact is described as high (C, I, A all high) with Network attack vector and no user interaction required. Remediation: upgrade to version 6....
VulnCheck KEV: CVE-2022-37661
SmartRG SR506n 2.5.15 and SR510n 2.6.13 routers are vulnerable to Remote Code Execution RCE via the ping host feature...
CVE-2022-37661
SmartRG SR506n 2.5.15 and SR510n 2.6.13 routers are vulnerable to Remote Code Execution RCE via the ping host feature...
CVE-2022-37661
SmartRG SR506n 2.5.15 and SR510n 2.6.13 routers are vulnerable to Remote Code Execution RCE via the ping host feature...
CVE-2022-37661
SmartRG SR506n 2.5.15 and SR510n 2.6.13 routers are vulnerable to Remote Code Execution RCE via the ping host feature...
Security feature bypass
SmartRG SR506n 2.5.15 and SR510n 2.6.13 routers are vulnerable to Remote Code Execution RCE via the ping host feature...
CVE-2022-37661
SmartRG SR506n 2.5.15 and SR510n 2.6.13 routers are vulnerable to Remote Code Execution RCE via the ping host feature...
PT-2022-24037 · Smartrg · Smartrg Sr506N +1
Name of the Vulnerable Software and Affected Versions: SmartRG SR506n version 2.5.15 SmartRG SR510n version 2.6.13 Description: The issue allows for Remote Code Execution RCE via the ping host feature. Recommendations: For SmartRG SR506n version 2.5.15, consider disabling the ping host feature...
OS Command Injection
genieacs is vulnerable to OS command injection. An attacker is able to inject malicious OS command via the ping host argument of lib/ui/api.ts and lib/ping.ts because it does not escape the argument and does not properly perform authorization check...
OS Command Injection in GenieACS
In GenieACS 1.2.x before 1.2.8, the UI interface API is vulnerable to unauthenticated OS command injection via the ping host argument lib/ui/api.ts and lib/ping.ts. The vulnerability arises from insufficient input validation combined with a missing authorization check...
GHSA-2877-693Q-PJ33 OS Command Injection in GenieACS
In GenieACS 1.2.x before 1.2.8, the UI interface API is vulnerable to unauthenticated OS command injection via the ping host argument lib/ui/api.ts and lib/ping.ts. The vulnerability arises from insufficient input validation combined with a missing authorization check...