22 matches found
CVE-2026-27850
Due to an improperly configured firewall rule, the router will accept any connection on the WAN port with the source port 5222, exposing all services which are normally only accessible through the local network. This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200...
PT-2026-21968
Name of the Vulnerable Software and Affected Versions MR9600 versions 1.0.4.205530 MX4200 versions 1.0.13.210200 Description An improperly configured firewall rule allows connections on the WAN port using source port 5222. This exposes services normally accessible only through the local network...
EUVD-2002-0127
Malware in sbrugna...
EUVD-2020-30070
Malware in sbrugna...
TP-LINK TL-ER5120G Command Execution Vulnerability
The TP-LINK TL-ER5120G is a multi-WAN port Gigabit commercial router from China P&L TP-LINK. The TP-LINK TL-ER5120G suffers from a command execution vulnerability that stems from a rule name that fails to correctly filter constructed command special characters, commands, and so on. An attacker...
The vulnerability of the `oftwareBus_dispatchNormalEPMsgOut()` function in the kernel module of KCodes NetUSB, which is part of the Wi-Fi router software for NETGEAR devices like R6220, R6230, R6400v2, R6700v3, R7000, R7800, and the repeater software NETGEAR EX8000, EX6200v2, as well as the DSL modem software D7800, allows a malicious actor to execute arbitrary code.
The vulnerability of the softwareBusdispatchNormalEPMsgOut function in the kernel module of KCodes NetUSB, a built-in software for Wi-Fi routers of NETGEAR models R6220, R7000, and R7800, lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability cou...
PT-2022-27628 · Ip Com · Ip-Com M50
Name of the Vulnerable Software and Affected Versions: IP-COM M50 version 15.11.0.3310768 Description: The issue is related to multiple buffer overflows that can occur via the pLanPortRange and pWanPortRange parameters in the formSetPortMapping function. Recommendations: For IP-COM M50 version...
Exploit for OS Command Injection in Zyxel Usg_Flex_100W_Firmware
CVE-2022-30525 A OS Command Injection Vulnerability in the CGI...
Denial of Service Vulnerability in TP-Link TL-R476G
The TP-Link TL-R476G is a multi-WAN port Gigabit enterprise wired router. A denial of service vulnerability exists in the TP-Link TL-R476G. An attacker can exploit the vulnerability to cause a denial of service to the target router and its upper tier operator's router by sending a carefully...
Denial of Service Vulnerability in TP-Link TL-R499GPM-AC
The TP-Link TL-R499GPM-AC is a multi-WAN port PoE powered AC controller AP management all-in-one Gigabit wired router. A denial of service vulnerability exists in the TP-Link TL-R499GPM-AC. An attacker can exploit the vulnerability to cause a denial of service to the target router and its upper...
TP-Link TL-R483G has a denial of service vulnerability
The TP-Link TL-R483G is a multi-WAN port Gigabit enterprise VPN router. A denial of service vulnerability exists in the TP-Link TL-R483G. An attacker can exploit the vulnerability to cause a denial of service to the target router and its upper tier operator's router by sending a carefully...
Denial of Service Vulnerability in TP-Link Router TL-ER2220G
The TL-ER2220G is a dual-core multi-WAN port Gigabit enterprise VPN router. A denial of service vulnerability exists in the TP-Link router TL-ER2220G, which can be exploited by attackers to cause a denial of service attack...
Denial of Service Vulnerability in TP-Link Router TL-ER6220G
The TL-ER6220G is a dual-core multi-WAN port Gigabit enterprise VPN router. A denial of service vulnerability exists in the TP-Link router TL-ER6220G, which can be exploited by attackers to cause a denial of service attack...
Authorization
Huawei 5G Mobile WiFi E6878-370 with versions of 10.0.3.1H563SP1C00,10.0.3.1H563SP21C233 have an improper authorization vulnerability. The device does not restrict certain data received from WAN port. Successful exploit could allow an attacker at WAN side to manage certain service of the device...
Huawei E6878-370 Improper Authorization Vulnerability
The Huawei E6878-370 is a portable 5G router from Huawei China. A security vulnerability exists in Huawei E6878-370 version 10.0.3.1 H563SP1C00 and version 10.0.3.1 H563SP21C233, which stems from the device failing to properly restrict certain data received on the WAN port. An attacker could...
Security Advisory - Improper Authorization Vulnerability in Several Products
There is an improper authorization vulnerability in several products. The device does not restrict certain data received from WAN port. Successful exploit could allow an attacker at WAN side to manage certain service of the device. Vulnerability ID: HWPSIRT-2020-05063 This vulnerability has been...
TP-LINK TL-WR703N Router Has Denial of Service Vulnerability
The TP-LINK TL-WR703N is a mini wireless router from China's TP-Link. A denial of service vulnerability exists in the TP-LINK TL-WR703N router, where an attacker can cause a denial of HTTP service response by constructing a special data message to be sent to the router's WAN port IP address witho...
CVE-2017-14117
The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589 and NVG599 devices, when IP Passthrough mode is not used, configures an unauthenticated proxy service on WAN TCP port 49152, which allows remote attackers to establish arbitrary TCP connections to intranet hosts by sending \x2a\xce\x01...
CVE-2011-4500
The UPnP IGD implementation on the Cisco Linksys WRT54GX with firmware 2.00.05, when UPnP is enabled, configures the SOAP server to listen on the WAN port, which allows remote attackers to administer the firewall via SOAP requests...
[NEWS] UTStarcom's iAN-02EX Remote Access Vulnerability
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...