22 matches found
CVE-2024-41936
A directory traversal vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to read arbitrary files and bypass authentication...
CVE-2024-39791
Stack-based buffer overflow vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to execute arbitrary code...
CVE-2024-42001 Vonets WiFi Bridges Forced Browsing
An improper authentication vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior enables an unauthenticated remote attacker to bypass authentication via a specially crafted direct request when another user has an active...
CVE-2024-42001 Vonets WiFi Bridges Forced Browsing
An improper authentication vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior enables an unauthenticated remote attacker to bypass authentication via a specially crafted direct request when another user has an active...
CVE-2024-42001
CVE-2024-42001 affects Vonets industrial WiFi bridge relays and WiFi bridge repeaters (versions 3.3.23.6.9 and prior). The vulnerability is an improper authentication that allows an unauthenticated remote attacker to bypass authentication via a specially crafted direct request when another user h...
CVE-2024-39791 Vonets WiFi Bridges Stack-based Buffer Overflow
Stack-based buffer overflow vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to execute arbitrary code...
CVE-2024-39791 Vonets WiFi Bridges Stack-based Buffer Overflow
Stack-based buffer overflow vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to execute arbitrary code...
CVE-2024-39815 Vonets WiFi Bridges Improper Check or Handling of Exceptional Conditions
Improper check or handling of exceptional conditions vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to cause a denial of service. A specially-crafted HTTP request to...
CVE-2024-39815 Vonets WiFi Bridges Improper Check or Handling of Exceptional Conditions
Improper check or handling of exceptional conditions vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to cause a denial of service. A specially-crafted HTTP request to...
CVE-2024-39815
CVE-2024-39815 affects Vonets industrial WiFi bridge relays and WiFi bridge repeaters (versions 3.3.23.6.9 and prior). Root cause: improper check/handling of exceptional conditions enabling an unauthenticated remote attacker to crash the service via a specially crafted HTTP request to pre-authent...
CVE-2024-37023 Vonets WiFi Bridges Command Injection
Multiple OS command injection vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an authenticated remote attacker to execute arbitrary OS commands via various endpoint parameters...
CVE-2024-37023
CVE-2024-37023 affects Vonets Industrial WiFi Bridge Relays/Repeaters (e.g., VAR1200-H/L, VAR600-H, VAP11AC/11G/11S variants, VBG1200, VGA-1000, etc.) with software version 3.3.23.6.9 and prior. It is a command-injection vulnerability that enables an authenticated remote attacker to execute arbit...
CVE-2024-37023 Vonets WiFi Bridges Command Injection
Multiple OS command injection vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an authenticated remote attacker to execute arbitrary OS commands via various endpoint parameters...
CVE-2024-41936 Vonets WiFi Bridges Path Traversal
A directory traversal vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to read arbitrary files and bypass authentication...
CVE-2024-41936 Vonets WiFi Bridges Path Traversal
A directory traversal vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to read arbitrary files and bypass authentication...
CVE-2024-41936
The CVE-2024-41936 vulnerability concerns Vonets Industrial WiFi Bridge Relays and WiFi Bridge Repeaters (affected: software version 3.3.23.6.9 and prior) where a Directory Traversal flaw allows an unauthenticated remote attacker to read arbitrary files and bypass authentication. Connected source...
CVE-2024-29082 Vonets WiFi Bridges Improper Access Control
Improper access control vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to bypass authentication and factory reset the device via unprotected goform endpoints...
CVE-2024-29082
Vonets CVE-2024-29082 affects industrial WiFi bridge relays and WiFi bridge repeaters (devices listed in public advisories) with firmware versions 3.3.23.6.9 and earlier. Root cause: Improper access control in unprotected goform endpoints allows an unauthenticated remote attacker to bypass authen...
CVE-2024-29082 Vonets WiFi Bridges Improper Access Control
Improper access control vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to bypass authentication and factory reset the device via unprotected goform endpoints...
CVE-2024-41161 Vonets WiFi Bridges Use of Hard-coded Credentials
Use of hard-coded credentials vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to bypass authentication using hard-coded administrator credentials. These accounts cannot be...