M50 Firmware Security Vulnerabilities and Issues — M50 Firmware CVE List

Lucene search

Ip-comM50 Firmware

15 matches found

CVE•added 2022/12/23 7:15 p.m.•40 views

CVE-2022-45716

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the indexSet parameter in the formIPMacBindDel function.

9.8CVSS9.7AI score0.00121EPSS

CVE•added 2022/12/23 7:15 p.m.•39 views

CVE-2022-45715

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the pLanPortRange and pWanPortRange parameters in the formSetPortMapping function.

9.8CVSS9.5AI score0.00121EPSS

CVE•added 2022/12/23 7:15 p.m.•38 views

CVE-2022-45707

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formAddDnsHijack function.

9.8CVSS9.7AI score0.00131EPSS

CVE•added 2022/12/23 7:15 p.m.•38 views

CVE-2022-45721

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the picName parameter in the formDelWewifiPic function.

9.8CVSS9.7AI score0.00121EPSS

CVE•added 2022/12/23 7:15 p.m.•37 views

CVE-2022-45710

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function.

9.8CVSS9.5AI score0.00121EPSS

CVE•added 2022/12/23 7:15 p.m.•35 views

CVE-2022-45706

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the hostname parameter in the formSetNetCheckTools function.

9.8CVSS9.7AI score0.00131EPSS

CVE•added 2022/12/23 7:15 p.m.•35 views

CVE-2022-45711

IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the hostname parameter in the formSetNetCheckTools function.

9.8CVSS9.7AI score0.37672EPSS

CVE•added 2022/12/23 7:15 p.m.•35 views

CVE-2022-45717

IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function. This vulnerability is exploited via a crafted GET request.

9.8CVSS9.5AI score0.00663EPSS

CVE•added 2022/12/23 7:15 p.m.•33 views

CVE-2022-45709

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple command injection vulnerabilities via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function.

9.8CVSS9.9AI score0.00663EPSS

CVE•added 2022/12/23 7:15 p.m.•32 views

CVE-2022-45712

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formAddDnsForward function.

9.8CVSS9.7AI score0.00121EPSS

CVE•added 2022/12/23 7:15 p.m.•32 views

CVE-2022-45719

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the gotoUrl parameter in the formPortalAuth function.

9.8CVSS9.7AI score0.00121EPSS

CVE•added 2022/12/23 7:15 p.m.•31 views

CVE-2022-45714

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the indexSet parameter in the formQOSRuleDel function.

9.8CVSS9.7AI score0.00121EPSS

CVE•added 2022/12/23 7:15 p.m.•31 views

CVE-2022-45718

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formIPMacBindAdd function.

9.8CVSS9.7AI score0.00121EPSS

CVE•added 2022/12/23 7:15 p.m.•29 views

CVE-2022-45708

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the sPortMapIndex parameter in the formDelPortMapping function.

9.8CVSS9.7AI score0.00131EPSS

CVE•added 2022/12/23 7:15 p.m.•29 views

CVE-2022-45720

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the ip, mac, and remark parameters in the formIPMacBindModify function.

9.8CVSS9.5AI score0.00121EPSS