Lucene search
+L

6 matches found

cnvd
cnvd
added 2017/06/07 12:0 a.m.2 views

Multiple Peplink Balance products are vulnerable to information leakage

Peplink Balance 305 and others are multi-exit load balancing routers for medium-sized businesses. An information disclosure vulnerability exists in several Peplink Balance products using firmware versions prior to fw-b305hw2380hw6580hw2710hw31350hw22500-7.0.1-build2093. An attacker can exploit th...

5.3CVSS6.3AI score0.03568EPSS
Exploits4References1
cnvd
cnvd
added 2017/06/06 12:0 a.m.6 views

Cross-Site Scripting Vulnerability in Multiple Peplink Balance Products

Peplink Balance 305 and others are multi-exit load balancing routers for medium-sized businesses. A cross-site scripting vulnerability exists in various Peplink Balance products using firmware versions prior to fw-b305hw2380hw6580hw2710hw31350hw22500-7.0.1-build2093. A remote attacker can exploit...

6.1CVSS6AI score0.01794EPSS
Exploits5References1
nvd
nvd
added 2017/06/05 2:29 p.m.23 views

CVE-2017-8840

Debug information disclosure exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2380hw6580hw2710hw31350hw22500-7.0.1-build2093. A direct request to cgi-bin/HASync/hasync.cgi?debug=1 shows Master LAN Address, Serial Number, HA Group ID, Virtual IP, a...

5.3CVSS5.1AI score0.03568EPSS
Exploits4References3
osv
osv
added 2017/06/05 2:29 p.m.5 views

CVE-2017-8840

Debug information disclosure exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2380hw6580hw2710hw31350hw22500-7.0.1-build2093. A direct request to cgi-bin/HASync/hasync.cgi?debug=1 shows Master LAN Address, Serial Number, HA Group ID, Virtual IP, a...

5.3CVSS5.8AI score0.03568EPSS
Exploits4References3
cvelist
cvelist
added 2017/06/05 2:0 p.m.31 views

CVE-2017-8840

Debug information disclosure exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2380hw6580hw2710hw31350hw22500-7.0.1-build2093. A direct request to cgi-bin/HASync/hasync.cgi?debug=1 shows Master LAN Address, Serial Number, HA Group ID, Virtual IP, a...

7AI score0.03568EPSS
Exploits4References3
cve
cve
added 2017/06/05 2:0 p.m.87 views

CVE-2017-8838

CVE-2017-8838 affects Peplink Balance routers (models 305, 380, 580, 710, 1350, 2500) with firmware prior to fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. The issue is a cross-site scripting (XSS) vulnerability in the web interface, triggered via the syncid parameter in the CGI sc...

6.1CVSS7.3AI score0.01794EPSS
Exploits5References3Affected Software1
Rows per page
Query Builder