Jetwave 2212s Firmware Security Vulnerabilities and Issues — Jetwave 2212s Firmware CVE List

Lucene search

KorenixJetwave 2212s Firmware

7 matches found

CVE•added 2020/10/15 7:15 p.m.•147 views

CVE-2020-12501

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) use undocumented accounts.

9.8CVSS9.5AI score0.01466EPSS

CVE•added 2020/10/15 7:15 p.m.•125 views

CVE-2020-12503

7.2CVSS7.6AI score0.05634EPSS

CVE•added 2020/10/15 7:15 p.m.•109 views

CVE-2020-12504

9.8CVSS9.6AI score0.01467EPSS

CVE•added 2023/02/23 11:15 p.m.•60 views

CVE-2023-23296

Korenix JetWave 4200 Series 1.3.0 and JetWave 3200 Series 1.6.0 are vulnerable to Denial of Service via /goform/formDefault.

6.5CVSS6.4AI score0.00069EPSS

CVE•added 2022/02/06 9:15 p.m.•58 views

CVE-2021-39280

Certain Korenix JetWave devices allow authenticated users to execute arbitrary code as root via /syscmd.asp. This affects 2212X before 1.9.1, 2212S before 1.9.1, 2212G before 1.8, 3220 V3 before 1.5.1, 3420 V3 before 1.5.1, and 2311 through 2022-01-31.

9CVSS9.4AI score0.01309EPSS

CVE•added 2023/02/23 11:15 p.m.•55 views

CVE-2023-23295

Korenix Jetwave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0 are vulnerable to Command Injection via /goform/formSysCmd. An attacker an modify the sysCmd parameter in order to execute commands as root.

8.8CVSS9AI score0.01699EPSS

CVE•added 2023/02/23 11:15 p.m.•38 views

CVE-2023-23294

Korenix JetWave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0 are vulnerable to Command Injection. An attacker can modify the file_name parameter to execute commands as root.

8.8CVSS8.9AI score0.01297EPSS