Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
inet vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2023-24261
A vulnerability in GL.iNET GL-E750 Mudi before firmware v3.216 allows authenticated malicious users to execute arbitrary code via a crafted POST request.
Gl-inet Gl-e750 Firmware
7.5
CVSSv3
CVE-2023-52161
The Access Point functionality in eapol_auth_key_handle in eapol.c in iNet wireless daemon (IWD) prior to 2.14 allows malicious users to gain unauthorized access to a protected Wi-Fi network. An attacker can complete the EAPOL handshake by skipping Msg2/4 and instead sending Msg4...
Intel Inet Wireless Daemon
8.1
CVSSv3
CVE-2020-17497
eapol.c in iNet wireless daemon (IWD) up to and including 1.8 allows malicious users to trigger a PTK reinstallation by retransmitting EAPOL Msg4/4.
Intel Inet Wireless Daemon
9.8
CVSSv3
CVE-2023-47462
Insecure Permissions vulnerability in GL.iNet AX1800 v.3.215 and before allows a remote malicious user to execute arbitrary code via the file sharing function.
Gl-inet Gl-ax1800 Firmware
9.8
CVSSv3
CVE-2023-47463
Insecure Permissions vulnerability in GL.iNet AX1800 version 4.0.0 prior to 4.5.0 allows a remote malicious user to execute arbitrary code via a crafted script to the gl_nas_sys authentication function.
Gl-inet Gl-ax1800 Firmware
8.8
CVSSv3
CVE-2023-47464
Insecure Permissions vulnerability in GL.iNet AX1800 version 4.0.0 prior to 4.5.0 allows a remote malicious user to execute arbitrary code via the upload API function.
Gl-inet Gl-ax1800 Firmware
1 Github repository
6.5
CVSSv3
CVE-2020-8689
Improper buffer restrictions in the Intel(R) Wireless for Open Source before version 1.5 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Intel Inet Wireless Daemon
5.9
CVSSv3
CVE-2023-33620
GL.iNET GL-AR750S-Ext firmware v3.215 uses an insecure protocol in its communications which allows malicious users to eavesdrop via a man-in-the-middle attack.
Gl-inet Gl-ar750s Firmware 3.215
5.9
CVSSv3
CVE-2023-33621
GL.iNET GL-AR750S-Ext firmware v3.215 inserts the admin authentication token into a GET request when the OpenVPN Server config file is downloaded. The token is then left in the browser history or access logs, potentially allowing malicious users to bypass authentication via sessi...
Gl-inet Gl-ar750s Firmware 3.215
9.8
CVSSv3
CVE-2023-46454
In GL.iNET GL-AR300M routers with firmware v4.3.7, it is possible to inject arbitrary shell commands through a crafted package name in the package information functionality.
Gl-inet Gl-ar300m Firmware 4.3.7
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »