Ew9 Firmware@15.11.0.14 Security Vulnerabilities and Issues — Ew9 Firmware@15.11.0.14 CVE List

Lucene search

Ip-comEw9 Firmware15.11.0.14

4 matches found

CVE•added 2022/10/27 6:15 p.m.•46 views

CVE-2022-43364

An access control issue in the password reset page of IP-COM EW9 V15.11.0.14(9732) allows unauthenticated attackers to arbitrarily change the admin password.

7.5CVSS7.6AI score0.00158EPSS

CVE•added 2022/10/27 6:15 p.m.•42 views

CVE-2022-43366

IP-COM EW9 V15.11.0.14(9732) allows unauthenticated attackers to access sensitive information via the checkLoginUser, ate, telnet, version, setDebugCfg, and boot interfaces.

7.5CVSS7.4AI score0.00219EPSS

CVE•added 2022/10/27 6:15 p.m.•38 views

CVE-2022-43367

IP-COM EW9 V15.11.0.14(9732) was discovered to contain a command injection vulnerability in the formSetDebugCfg function.

9.8CVSS9.7AI score0.0109EPSS

CVE•added 2022/10/27 6:15 p.m.•36 views

CVE-2022-43365

IP-COM EW9 V15.11.0.14(9732) was discovered to contain a buffer overflow in the formSetDebugCfg function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

7.5CVSS7.6AI score0.00105EPSS