19 matches found
CVE-2024-39791
Stack-based buffer overflow vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to execute arbitrary code...
CVE-2024-39815
Improper check or handling of exceptional conditions vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to cause a denial of service. A specially-crafted HTTP request to...
EUVD-2024-34439
Malicious code in bioql PyPI...
EUVD-2024-38236
Malicious code in bioql PyPI...
EUVD-2024-39283
Malicious code in bioql PyPI...
EUVD-2024-39387
Malicious code in bioql PyPI...
EUVD-2024-38244
Malicious code in bioql PyPI...
CVE-2024-29082
Improper access control vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to bypass authentication and factory reset the device via unprotected goform endpoints...
CVE-2024-41936
A directory traversal vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to read arbitrary files and bypass authentication...
CVE-2024-41936
A directory traversal vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to read arbitrary files and bypass authentication...
CVE-2024-39815
Improper check or handling of exceptional conditions vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to cause a denial of service. A specially-crafted HTTP request to...
CVE-2024-37023
Multiple OS command injection vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an authenticated remote attacker to execute arbitrary OS commands via various endpoint parameters...
CVE-2024-29082
Improper access control vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to bypass authentication and factory reset the device via unprotected goform endpoints...
CVE-2024-37023 Vonets WiFi Bridges Command Injection
Multiple OS command injection vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an authenticated remote attacker to execute arbitrary OS commands via various endpoint parameters...
CVE-2024-41936
The CVE-2024-41936 vulnerability concerns Vonets Industrial WiFi Bridge Relays and WiFi Bridge Repeaters (affected: software version 3.3.23.6.9 and prior) where a Directory Traversal flaw allows an unauthenticated remote attacker to read arbitrary files and bypass authentication. Connected source...
CVE-2024-41161
Use of hard-coded credentials vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to bypass authentication using hard-coded administrator credentials. These accounts cannot be...
CVE-2024-41161
CVE-2024-41161 — Vonets Industrial WiFi Bridge Relays/Repeaters Affected products: Vonets VAR1200-H/L, VAR600-H, VAP11AC/11G-500S/11S, VBG1200, VAR11N-300, VAP11G-300/500, VGA-1000, and related models with software versions 3.3.23.6.9 and prior. Root cause: Use of hard-coded administrator credent...
PT-2024-5761 · Vonets · Vonets Industrial Wifi Bridge Relays +1
Name of the Vulnerable Software and Affected Versions: Vonets Industrial WiFi Bridge Relays and WiFi Bridge Repeaters versions 3.3.23.6.9 and prior Description: The issue exists due to the presence of hard-coded credentials in the application code. This allows a remote attacker to bypass...
DLA-313-1 virtualbox-ose - security update
Bulletin has no description...