Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:40 a.m.8 views

CVE-2024-40088

A Directory Traversal vulnerability in the Boa webserver of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to enumerate the existence and length of any file in the filesystem by placing malicious payloads in the path of any HTTP request...

5.3CVSS7AI score0.00682EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:38 a.m.16 views

CVE-2024-40086

A Buffer Overflow vulnerability in the localappsetrouterwifiSSIDPWD function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via a password field larger than 64 bytes in length...

9.6CVSS8.2AI score0.00595EPSS
Exploits1References1
NVD
NVD
added 2024/10/21 9:15 p.m.24 views

CVE-2024-40090

Vilo 5 Mesh WiFi System = 5.16.1.33 is vulnerable to Information Disclosure. An information leak in the Boa webserver allows remote, unauthenticated attackers to leak memory addresses of uClibc and the stack via sending a GET request to the index page...

4.3CVSS0.00251EPSS
Exploits1References1
NVD
NVD
added 2024/10/21 9:15 p.m.25 views

CVE-2024-40087

Vilo 5 Mesh WiFi System = 5.16.1.33 is vulnerable to Insecure Permissions. Lack of authentication in the custom TCP service on port 5432 allows remote, unauthenticated attackers to gain administrative access over the router...

9.6CVSS0.00356EPSS
Exploits1References1
NVD
NVD
added 2024/10/21 9:15 p.m.16 views

CVE-2024-40089

A Command Injection vulnerability in Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, authenticated attackers to execute arbitrary code by injecting shell commands into the name of the Vilo device...

9.1CVSS0.01193EPSS
Exploits1References1
NVD
NVD
added 2024/10/21 9:15 p.m.37 views

CVE-2024-40085

A Buffer Overflow vulnerability in the localappsetrouterwan function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via pppoeusername and pppoepassword fields being larger than 128 bytes in length...

9.6CVSS0.00595EPSS
Exploits1References1
NVD
NVD
added 2024/10/21 9:15 p.m.29 views

CVE-2024-40086

A Buffer Overflow vulnerability in the localappsetrouterwifiSSIDPWD function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via a password field larger than 64 bytes in length...

9.6CVSS0.00595EPSS
Exploits1References1
CVE
CVE
added 2024/10/21 12:0 a.m.51 views

CVE-2024-40090

The CVE-2024-40090 entry concerns Vilo 5 Mesh WiFi System versions 5.16.1.33 and earlier, where an information disclosure vulnerability exists in the Boa webserver. Remote, unauthenticated attackers can leak memory addresses (uClibc) and stack information by sending a GET request to the index pag...

4.3CVSS6.7AI score0.00251EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.25 views

CVE-2024-40085

A Buffer Overflow vulnerability in the localappsetrouterwan function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via pppoeusername and pppoepassword fields being larger than 128 bytes in length...

0.00595EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.25 views

CVE-2024-40087

Vilo 5 Mesh WiFi System = 5.16.1.33 is vulnerable to Insecure Permissions. Lack of authentication in the custom TCP service on port 5432 allows remote, unauthenticated attackers to gain administrative access over the router...

0.00356EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.24 views

CVE-2024-40090

Vilo 5 Mesh WiFi System = 5.16.1.33 is vulnerable to Information Disclosure. An information leak in the Boa webserver allows remote, unauthenticated attackers to leak memory addresses of uClibc and the stack via sending a GET request to the index page...

0.00251EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.30 views

CVE-2024-40084

A Buffer Overflow in the Boa webserver of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via exceptionally long HTTP methods or paths...

0.00595EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.20 views

CVE-2024-40088

A Directory Traversal vulnerability in the Boa webserver of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to enumerate the existence and length of any file in the filesystem by placing malicious payloads in the path of any HTTP request...

0.00682EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/10/21 12:0 a.m.13 views

CVE-2024-40085

A Buffer Overflow vulnerability in the localappsetrouterwan function of Vilo 5 Mesh WiFi System = 5.16.1.33 allows remote, unauthenticated attackers to execute arbitrary code via pppoeusername and pppoepassword fields being larger than 128 bytes in length...

8AI score0.00595EPSS
Exploits1References2
CVE
CVE
added 2024/10/21 12:0 a.m.52 views

CVE-2024-40085

CVE-2024-40085 affects Vilo 5 Mesh WiFi System versions

9.6CVSS8.1AI score0.00595EPSS
Exploits1References1
CVE
CVE
added 2024/10/21 12:0 a.m.55 views

CVE-2024-40084

CVE-2024-40084 describes a remote, unauthenticated buffer overflow in the Boa webserver used by the Vilo 5 Mesh WiFi System (versions

9.6CVSS8.1AI score0.00595EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/10/21 12:0 a.m.52 views

CVE-2024-40088

CVE-2024-40088 is a Directory Traversal in the Boa webserver used by Vilo 5 Mesh WiFi System, affected

5.3CVSS7AI score0.00682EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/10/21 12:0 a.m.61 views

CVE-2024-40091

CVE-2024-40091 affects Vilo 5 Mesh WiFi System versions up to 5.16.1.33. The Red Hat, NVD, CNNVD, and related records describe a vulnerability where Boa Webserver lacks authentication, enabling remote, unauthenticated access to retrieve logs containing sensitive system information. The base metri...

5.3CVSS7.2AI score0.00377EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/10/21 12:0 a.m.21 views

CVE-2024-40091

Vilo 5 Mesh WiFi System = 5.16.1.33 lacks authentication in the Boa webserver, which allows remote, unauthenticated attackers to retrieve logs with sensitive system...

0.00377EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/10/21 12:0 a.m.13 views

CVE-2024-40091

Vilo 5 Mesh WiFi System = 5.16.1.33 lacks authentication in the Boa webserver, which allows remote, unauthenticated attackers to retrieve logs with sensitive system...

7.1AI score0.00377EPSS
Exploits1References2
Rows per page
Query Builder