6 matches found
EUVD-2021-25832
Malware in sbrugna...
CVE-2021-30232
The api/ZRIGMP/setIGMPPROXY interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the IGMPPROXYWANCONNECT parameter...
CVE-2021-39474
Vulnerability in the product Docsis 3.0 UBC1319BA00 Router supported affected version 1319010201r009. The vulnerability allows an attacker with privileges and network access through the ping.cmd component to execute commands on the device...
CVE-2022-43973
An arbitrary code execution vulnerability exisits in Linksys WRT54GL Wireless-G Broadband Router with firmware = 4.30.18.006. The CheckTSSI function within the httpd binary uses unvalidated user input in the construction of a system command. An authenticated attacker with administrator privileges...
CVE-2022-40720
This vulnerability allows network-adjacent attackers to execute arbitrary commands on affected installations of D-Link DIR-2150 4.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Dreambox plugin for the xupnpd service, which listens on...
The vulnerability of the formWriteFacMac() function (/goform/WriteFacMac) in the Tenda AC15 router software allows a hacker to execute arbitrary commands.
The vulnerability of the formWriteFacMac function /goform/WriteFacMac of the Tenda AC15 router software lies in the lack of measures taken to neutralize special elements used in the OS commands when processing the mac parameter. Exploiting this vulnerability allows a remote attacker to execute...