18 matches found
EUVD-2024-35351
Malicious code in bioql PyPI...
CVE-2024-35522
Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operatingmode.cgi via the apmode parameter with ap24gmanual set to 1 and ap24gmanualsec set to NotNone...
CVE-2024-35522
Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operatingmode.cgi via the apmode parameter with ap24gmanual set to 1 and ap24gmanualsec set to NotNone...
CVE-2024-35522
The CVE-2024-35522 case is about NETGEAR EX3700 firmware prior to 1.0.0.98, which contains an authenticated command-injection vulnerability in the operating_mode.cgi script. The root cause is lack of input sanitization in the API handling the ap_mode/ap 24g manual controls (ap_mode parameter with...
The vulnerability of the HTTP-server of the microprogrammed Wi-Fi range extension software from Actiontec, the WCB6200Q, allows a hacker to execute arbitrary code.
The vulnerability of the HTTP-server of the microprogrammed Wi-Fi extension software from Actiontec, WCB6200Q, is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
TOTOLINK EX1800T 安全漏洞
The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. A command execution vulnerability exists in the TOTOLINK EX1800T langType parameter. An attacker can exploit this vulnerability to execute arbitrary commands on the system...
TOTOLINK EX1800T 安全漏洞
The TOTOLINK EX1800T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. The TOTOLINK EX1800T suffers from a command execution vulnerability that can be exploited by an attacker to execute arbitrary commands on the system...
PT-2023-9250 · Actiontec · Actiontec Wcb6200Q
Name of the Vulnerable Software and Affected Versions: Actiontec WCB6200Q affected versions not specified Description: The issue is related to a stack-based buffer overflow in the uh get postdata withupload function of the HTTP server in Actiontec WCB6200Q Wi-Fi range extenders. This allows a...
CVE-2022-38956
An exploitable firmware downgrade vulnerability was discovered on the Netgear WPN824EXT WiFi Range Extender. An attacker can conduct a MITM attack to replace the user-uploaded firmware image with an original old firmware image. This affects Firmware 1.1.11.1.9 and earlier...
CVE-2022-38955
An exploitable firmware modification vulnerability was discovered on the Netgear WPN824EXT WiFi Range Extender. An attacker can conduct a MITM attack to modify the user-uploaded firmware image and bypass the CRC check. A successful attack can either introduce a backdoor to the device or make the...
CVE-2022-38956
The CVE-2022-38956 issue affects Netgear WPN824EXT WiFi Range Extender, specifically firmware versions 1.1.1 through 1.1.9 and earlier. The root cause is lack of integrity checks in the firmware update path, enabling a MITM attacker to downgrade the firmware by replacing the user-uploaded image w...
WAVLINK WiFi-Repeater 安全漏洞
WAVLINK WiFi-Repeater is a WiFi range extender from China RuiYin Technology WAVLINK. A security vulnerability exists in WAVLINK WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 version. An attacker exploited the vulnerability to obtain the telnet password by accessing the tftp.txt page...
TOTOLINK EX1200T 操作系统命令注入漏洞
TOTOLINK EX1200T is a Wi-Fi range extender from China-based TOTOLINK, and a command injection vulnerability exists in TOTOLINK EX1200T. langType to conduct attacks...
NETGEAR EX6100v1 Stack Overflow Vulnerability
NETGEAR EX6100v1 is a WiFi range extender from Netgear, Inc. NETGEAR EX6100v1 is vulnerable to a stack overflow vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...
D-Link DAP-1860 Remote Code Execution Vulnerability (CNVD-2022-38538)
The D-Link DAP-1860 is a WiFi range extender from D-Link, a Taiwan-based company. The D-Link DAP-1860 is vulnerable to a remote code execution vulnerability that could be exploited by attackers to elevate privileges and execute code in the device context...
D-Link DAP-1860 Remote Code Execution Vulnerability (CNVD-2022-38539)
The D-Link DAP-1860 is a WiFi range extender from D-Link, a Taiwan-based company. A remote code execution vulnerability exists in the D-Link DAP-1860, which stems from a network system or product that does not properly filter external input data during the construction of executable commands, and...
D-Link DAP-1650 授权问题漏洞
The D-Link DAP-1650 is a WiFi range extender. A security vulnerability exists in the D-Link DAP-1650 authentication mechanism, which can be exploited by a remote attacker to submit a special request for unauthorized access to the device...
Coredy CX-E120 Repeater Multiple Vulnerabilities
Vulnerabilities Summary The following advisory describes two 2 vulnerabilities found in Coredy CX-E120 Repeater. The Coredy CX-E120 WiFi Range Extender is “a network device with multifunction, which can be using for increasing the distance of a WiFi network by boosting the existing WiFi signal an...