CWE:
 

Topic
Date
Author
Med.
Barracuda WAF V360 Firmware 8.0.1.014 Early Boot Root Shell
07.07.2017
Matt Bergin


CVEMAP Search Results

CVE
Details
Description
2024-07-08
Waiting for details
CVE-2023-49593

Updating...
 

 
Leftover debug code exists in the boa formSysCmd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623. A specially crafted network request can lead to arbitrary command execution.

 
2024-06-25
Waiting for details
CVE-2024-21827

Updating...
 

 
A leftover debug code vulnerability exists in the cli_server debug functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.4.1 Build 20240117 Rel.57421. A specially crafted series of network requests can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger this vulnerability.

 
2024-05-28
Waiting for details
CVE-2024-21785

Updating...
 

 
A leftover debug code vulnerability exists in the Telnet Diagnostic Interface functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted series of network requests can lead to unauthorized access. An attacker can send a sequence of requests to trigger this vulnerability.

 
2024-05-15
Waiting for details
CVE-2024-32047

Updating...
 

 
Hard-coded credentials for the CyberPower PowerPanel test server can be found in the production code. This might result in an attacker gaining access to the testing or production server.

 
2022-11-09
Waiting for details
CVE-2022-28689

Updating...
 

 
A leftover debug code vulnerability exists in the console support functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger this vulnerability.

 
Waiting for details
CVE-2022-29481

Updating...
 

 
A leftover debug code vulnerability exists in the console nvram functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted series of network requests can lead to disabling security features. An attacker can send a sequence of requests to trigger this vulnerability.

 
Waiting for details
CVE-2022-29888

Updating...
 

 
A leftover debug code vulnerability exists in the httpd port 4444 upload.cgi functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted HTTP request can lead to arbitrary file deletion. An attacker can send an HTTP request to trigger this vulnerability.

 
Waiting for details
CVE-2022-30543

Updating...
 

 
A leftover debug code vulnerability exists in the console infct functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted series of network requests can lead to execution of privileged operations. An attacker can send a sequence of requests to trigger this vulnerability.

 
2022-10-25
Waiting for details
CVE-2022-29520

Updating...
 

 
An OS command injection vulnerability exists in the console_main_loop :sys functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z. A specially-crafted XCMD can lead to arbitrary command execution. An attacker can send an XML payload to trigger this vulnerability.

 
Waiting for details
CVE-2022-32760

Updating...
 

 
A denial of service vulnerability exists in the XCMD doDebug functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to denial of service. An attacker can send a malicious XML payload to trigger this vulnerability.

 

 


Copyright 2024, cxsecurity.com

 

Back to Top