Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netis-systems vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-20074
On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page.
Netis-systems Dl4343 Firmware -
6.1
CVSSv3
CVE-2019-20075
On Netis DL4323 devices, pingrtt_v6.html has XSS (Ping6 Diagnostic).
Netis-systems Dl4343 Firmware -
9.8
CVSSv3
CVE-2018-25069
A vulnerability classified as critical has been found in Netis Netcore Router. This affects an unknown part. The manipulation leads to use of hard-coded password. It is possible to initiate the attack remotely. The identifier VDB-217593 was assigned to this vulnerability.
Netis-systems Netcore Router Firmware -
9.8
CVSSv3
CVE-2023-42336
An issue in NETIS SYSTEMS WF2409Ev4 v.1.0.1.705 allows a remote malicious user to execute arbitrary code and obtain sensitive information via the password parameter in the /etc/shadow.sample component.
Netis-systems Wf2409e Firmware 1.0.1.705
8.8
CVSSv3
CVE-2023-43890
Netis N3Mv2-V1.0.1.865 exists to contain a command injection vulnerability in the diagnostic tools page. This vulnerability is exploited via a crafted HTTP request.
Netis-systems N3m Firmware 1.0.1.865
9.8
CVSSv3
CVE-2023-43891
Netis N3Mv2-V1.0.1.865 exists to contain a command injection vulnerability in the Changing Username and Password function. This vulnerability is exploited via a crafted payload.
Netis-systems N3m Firmware 1.0.1.865
9.8
CVSSv3
CVE-2023-43892
Netis N3Mv2-V1.0.1.865 exists to contain a command injection vulnerability via the Hostname parameter within the WAN settings. This vulnerability is exploited via a crafted payload.
Netis-systems N3m Firmware 1.0.1.865
9.8
CVSSv3
CVE-2023-43893
Netis N3Mv2-V1.0.1.865 exists to contain a command injection vulnerability via the wakeup_mac parameter in the Wake-On-LAN (WoL) function. This vulnerability is exploited via a crafted payload.
Netis-systems N3m Firmware 1.0.1.865
9.8
CVSSv3
CVE-2024-22729
NETIS SYSTEMS MW5360 V1.0.1.3031 exists to contain a command injection vulnerability via the password parameter on the login page.
Netis-systems Mw5360 Firmware 1.0.1.3031
7.5
CVSSv3
CVE-2023-45463
Netis N3Mv2-V1.0.1.865 exists to contain a buffer overflow via the hostName parameter in the FUN_0040dabc function. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted input.
Netis-systems N3m Firmware 1.0.1.865
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »