15 matches found
CVE-2022-45716
CVE-2022-45716 affects IP-COM M50, version V15.11.0.33(10768). The vulnerability is a buffer overflow in the internal function formIPMacBindDel triggered via the indexSet parameter. CVSS v3.1 metrics in the sources show a CRITICAL base score (9.8) with network access, no user interaction, and imp...
CVE-2022-45710
CVE-2022-45710 affects IP-COM M50 router (V15.11.0.33(10768)). Multiple buffer overflows occur via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function. Exploitation details are not provided in the documents; the vulnerability is described as buffer overflows, with a high i...
CVE-2022-45721
The CVE-2022-45721 entry concerns IP-COM M50 firmware version 15.11.0.33(10768), where a buffer overflow can be triggered via the picName parameter in the formDelWewifiPic function. The vulnerability is documented with a high impact (CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, base score 9.8)...
CVE-2022-45706
IP-COM M50 router (version 15.11.0.33(10768)) has a buffer overflow in the formSetNetCheckTools function triggered via the hostname parameter. The issue is documented with high-severity impact (CVSS 3.1: CRITICAL) and is publicly discussed in multiple sources. A publicly disclosed mitigation sugg...
CVE-2022-45707
CVE-2022-45707 affects IP-COM M50, version 15.11.0.33(10768). A vulnerability in the formAddDnsHijack function allows a buffer overflow via the rules parameter . This is the root cause described across multiple sources. The CVSS v3.1 score is 9.8 (CRITICAL) with network attack vector, no privileg...
CVE-2022-45714
CVE-2022-45714 affects IP-COM M50 with firmware version 15.11.0.33(10768). The vulnerability is a buffer overflow in the indexSet parameter of the formQOSRuleDel function. CVSS 3.1 base score 9.8 (CRITICAL) indicates high impact on confidentiality, integrity, and availability, exploitable over th...
CVE-2022-45715
CVE-2022-45715 affects IP-COM M50 router (version 15.11.0.33(10768)). The issue is described as multiple buffer overflows in the function formSetPortMapping , exploitable via the parameters pLanPortRange and pWanPortRange . CVSS v3.1 metrics indicate a CRITICAL impact (_NETWORK attack; no privile...
CVE-2022-45709
IP-COM M50, firmware version 15.11.0.33(10768), contains multiple command injection vulnerabilities in the formSetDebugCfg function. The issues are triggered via the pEnable, pLevel, and pModule parameters and are described with high impact (CVE-2022-45709). The CVSS data indicates a network-base...
CVE-2022-45708
CVE-2022-45708 affects IP-COM M50, version V15.11.0.33(10768). A vulnerability in the formDelPortMapping function’s sPortMapIndex parameter enables a buffer overflow. Impacted components include the port-mapping logic (buffer overflow) with potential baseline CVSS v3.1 score of 9.8 (CRITICAL) and...
CVE-2022-45711
Affected product: IP-COM M50 router, version 15.11.0.33(10768). Vulnerability: command injection via the hostname parameter in the formSetNetCheckTools function. Root cause / impact: underlying issue allows arbitrary command execution with network access, with high impact across confidentiality, ...
CVE-2022-45717
CVE-2022-45717 affects IP-COM M50 firmware (V15.11.0.33(10768)). The issue is a command injection in the USB partition handling via the usbPartitionName parameter in the formSetUSBPartitionUmount function, exploitable by a crafted GET request. Public documents indicate high-severity impact (CVE w...
CVE-2022-45712
The CVE-2022-45712 issue affects IP-COM M50 firmware version 15.11.0.33(10768). A buffer overflow is exposed via the rules parameter in the formAddDnsForward function, with CVSS 3.1 base score 9.8 (CRITICAL). Impact is listed as high on confidentiality, integrity, and availability. Practical expl...
CVE-2022-45718
CVE-2022-45718 affects IP-COM M50 (firmware version 15.11.0.33(10768)). The vulnerability is a buffer overflow triggered via the rules parameter in the formIPMacBindAdd function. Public details in the provided connected documents consistently describe the issue and affected platform, but there is...
CVE-2022-45719
IP-COM M50 vulnerable to a buffer overflow via the gotoUrl parameter in the formPortalAuth function, affecting version 15.11.0.33(10768). The issue is documented across multiple sources (e.g., PT-2022-27632, CNNVD, NVD) and is described as a buffer overflow with high severity. The PT-2022-27632 p...
CVE-2022-45720
IP-COM M50 is affected by CVE-2022-45720 (version 15.11.0.33(10768)). According to PT-2022-27634, the issue involves multiple buffer overflows triggered via the ip , mac , and remark parameters in the function formIPMacBindModify . The connected PT Security entry provides concrete details about t...