Lucene search
K
Ip-comM50 Firmware

15 matches found

CVE
CVE
added 2022/12/23 12:0 a.m.57 views

CVE-2022-45716

CVE-2022-45716 affects IP-COM M50, version V15.11.0.33(10768). The vulnerability is a buffer overflow in the internal function formIPMacBindDel triggered via the indexSet parameter. CVSS v3.1 metrics in the sources show a CRITICAL base score (9.8) with network access, no user interaction, and imp...

9.8CVSS9.7AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.53 views

CVE-2022-45710

CVE-2022-45710 affects IP-COM M50 router (V15.11.0.33(10768)). Multiple buffer overflows occur via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function. Exploitation details are not provided in the documents; the vulnerability is described as buffer overflows, with a high i...

9.8CVSS9.5AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.51 views

CVE-2022-45721

The CVE-2022-45721 entry concerns IP-COM M50 firmware version 15.11.0.33(10768), where a buffer overflow can be triggered via the picName parameter in the formDelWewifiPic function. The vulnerability is documented with a high impact (CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, base score 9.8)...

9.8CVSS9.7AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.50 views

CVE-2022-45706

IP-COM M50 router (version 15.11.0.33(10768)) has a buffer overflow in the formSetNetCheckTools function triggered via the hostname parameter. The issue is documented with high-severity impact (CVSS 3.1: CRITICAL) and is publicly discussed in multiple sources. A publicly disclosed mitigation sugg...

9.8CVSS9.7AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.50 views

CVE-2022-45707

CVE-2022-45707 affects IP-COM M50, version 15.11.0.33(10768). A vulnerability in the formAddDnsHijack function allows a buffer overflow via the rules parameter . This is the root cause described across multiple sources. The CVSS v3.1 score is 9.8 (CRITICAL) with network attack vector, no privileg...

9.8CVSS9.7AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.48 views

CVE-2022-45714

CVE-2022-45714 affects IP-COM M50 with firmware version 15.11.0.33(10768). The vulnerability is a buffer overflow in the indexSet parameter of the formQOSRuleDel function. CVSS 3.1 base score 9.8 (CRITICAL) indicates high impact on confidentiality, integrity, and availability, exploitable over th...

9.8CVSS9.7AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.48 views

CVE-2022-45715

CVE-2022-45715 affects IP-COM M50 router (version 15.11.0.33(10768)). The issue is described as multiple buffer overflows in the function formSetPortMapping , exploitable via the parameters pLanPortRange and pWanPortRange . CVSS v3.1 metrics indicate a CRITICAL impact (_NETWORK attack; no privile...

9.8CVSS9.5AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.46 views

CVE-2022-45709

IP-COM M50, firmware version 15.11.0.33(10768), contains multiple command injection vulnerabilities in the formSetDebugCfg function. The issues are triggered via the pEnable, pLevel, and pModule parameters and are described with high impact (CVE-2022-45709). The CVSS data indicates a network-base...

9.8CVSS9.9AI score0.04253EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.45 views

CVE-2022-45708

CVE-2022-45708 affects IP-COM M50, version V15.11.0.33(10768). A vulnerability in the formDelPortMapping function’s sPortMapIndex parameter enables a buffer overflow. Impacted components include the port-mapping logic (buffer overflow) with potential baseline CVSS v3.1 score of 9.8 (CRITICAL) and...

9.8CVSS9.7AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.45 views

CVE-2022-45711

Affected product: IP-COM M50 router, version 15.11.0.33(10768). Vulnerability: command injection via the hostname parameter in the formSetNetCheckTools function. Root cause / impact: underlying issue allows arbitrary command execution with network access, with high impact across confidentiality, ...

9.8CVSS9.7AI score0.20185EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.45 views

CVE-2022-45717

CVE-2022-45717 affects IP-COM M50 firmware (V15.11.0.33(10768)). The issue is a command injection in the USB partition handling via the usbPartitionName parameter in the formSetUSBPartitionUmount function, exploitable by a crafted GET request. Public documents indicate high-severity impact (CVE w...

9.8CVSS9.5AI score0.04253EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.44 views

CVE-2022-45712

The CVE-2022-45712 issue affects IP-COM M50 firmware version 15.11.0.33(10768). A buffer overflow is exposed via the rules parameter in the formAddDnsForward function, with CVSS 3.1 base score 9.8 (CRITICAL). Impact is listed as high on confidentiality, integrity, and availability. Practical expl...

9.8CVSS9.7AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.44 views

CVE-2022-45718

CVE-2022-45718 affects IP-COM M50 (firmware version 15.11.0.33(10768)). The vulnerability is a buffer overflow triggered via the rules parameter in the formIPMacBindAdd function. Public details in the provided connected documents consistently describe the issue and affected platform, but there is...

9.8CVSS9.7AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.43 views

CVE-2022-45719

IP-COM M50 vulnerable to a buffer overflow via the gotoUrl parameter in the formPortalAuth function, affecting version 15.11.0.33(10768). The issue is documented across multiple sources (e.g., PT-2022-27632, CNNVD, NVD) and is described as a buffer overflow with high severity. The PT-2022-27632 p...

9.8CVSS9.7AI score0.01056EPSS
CVE
CVE
added 2022/12/23 12:0 a.m.42 views

CVE-2022-45720

IP-COM M50 is affected by CVE-2022-45720 (version 15.11.0.33(10768)). According to PT-2022-27634, the issue involves multiple buffer overflows triggered via the ip , mac , and remark parameters in the function formIPMacBindModify . The connected PT Security entry provides concrete details about t...

9.8CVSS9.5AI score0.01056EPSS