Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netis-systems vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-43893
Netis N3Mv2-V1.0.1.865 exists to contain a command injection vulnerability via the wakeup_mac parameter in the Wake-On-LAN (WoL) function. This vulnerability is exploited via a crafted payload.
Netis-systems N3m Firmware 1.0.1.865
8.8
CVSSv3
CVE-2020-8946
Netis WF2471 v1.2.30142 devices allow an authenticated malicious user to execute arbitrary OS commands via shell metacharacters in the /cgi-bin-igd/sys_log_clean.cgi log_3g_type parameter.
Netis-systems Wf2471 Firmware 1.2.30142
9.8
CVSSv3
CVE-2023-43134
There is an unauthorized access vulnerability in Netis 360RAC1200 v1.3.4517, which allows malicious users to obtain sensitive information of the device without authentication, obtain user tokens, and ultimately log in to the device backend management.
Netis-systems 360r Firmware 1.3.4517
9.8
CVSSv3
CVE-2024-22729
NETIS SYSTEMS MW5360 V1.0.1.3031 exists to contain a command injection vulnerability via the password parameter on the login page.
Netis-systems Mw5360 Firmware 1.0.1.3031
5.4
CVSSv3
CVE-2018-5967
Netis WF2419 V2.2.36123 devices allow XSS via the Description parameter on the Bandwidth Control Rule Settings page.
Netis-systems Wf2419 Firmware 2.2.36123
5.4
CVSSv3
CVE-2018-6190
Netis WF2419 V3.2.41381 devices allow XSS via the Description field on the MAC Filtering page.
Netis-systems Wf2419 Firmware 3.2.41381
1 EDB exploit
7.5
CVSSv3
CVE-2023-45463
Netis N3Mv2-V1.0.1.865 exists to contain a buffer overflow via the hostName parameter in the FUN_0040dabc function. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted input.
Netis-systems N3m Firmware 1.0.1.865
7.5
CVSSv3
CVE-2023-45464
Netis N3Mv2-V1.0.1.865 exists to contain a buffer overflow via the servDomain parameter. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted input.
Netis-systems N3m Firmware 1.0.1.865
9.8
CVSSv3
CVE-2023-45465
Netis N3Mv2-V1.0.1.865 exists to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings.
Netis-systems N3m Firmware 1.0.1.865
9.8
CVSSv3
CVE-2023-45466
Netis N3Mv2-V1.0.1.865 exists to contain a command injection vulnerability via the pin_host parameter in the WPS Settings.
Netis-systems N3mv2 Firmware 1.0.1.865
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »