Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
inet vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-29778
GL.iNET MT3000 4.1.0 Release 2 is vulnerable to OS Command Injection via /usr/lib/oui-httpd/rpc/logread.
Gl-inet Gl-mt3000 Firmware 4.1.0
NA
CVE-2023-46454
In GL.iNET GL-AR300M routers with firmware v4.3.7, it is possible to inject arbitrary shell commands through a crafted package name in the package information functionality.
Gl-inet Gl-ar300m Firmware 4.3.7
1 Github repository
NA
CVE-2023-46455
In GL.iNET GL-AR300M routers with firmware v4.3.7 it is possible to write arbitrary files through a path traversal attack in the OpenVPN client file upload functionality.
Gl-inet Gl-ar300m Firmware 4.3.7
1 Github repository
NA
CVE-2023-46456
In GL.iNET GL-AR300M routers with firmware 3.216 it is possible to inject arbitrary shell commands through the OpenVPN client file upload functionality.
Gl-inet Gl-ar300m Firmware 3.216
1 Github repository
655
VMScore
CVE-2019-6272
Command injection vulnerability in login_cgi in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote malicious users to execute arbitrary code.
Gl-inet Gl-ar300m-lite Firmware 2.27
1 EDB exploit
405
VMScore
CVE-2019-6273
download_file in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote malicious users to download arbitrary files.
Gl-inet Gl-ar300m-lite Firmware 2.27
1 EDB exploit
655
VMScore
CVE-2019-6274
Directory traversal vulnerability in storage_cgi in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote malicious users to have unspecified impact via directory traversal sequences.
Gl-inet Gl-ar300m-lite Firmware 2.27
1 EDB exploit
655
VMScore
CVE-2019-6275
Command injection vulnerability in firmware_cgi in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote malicious users to execute arbitrary code.
Gl-inet Gl-ar300m-lite Firmware 2.27
1 EDB exploit
NA
CVE-2022-24116
Certain General Electric Renewable Energy products have inadequate encryption strength. This affects iNET and iNET II prior to 8.3.0.
Ge Inet 900 Firmware
Ge Inet Ii 900 Firmware
Ge Sd1 Firmware
Ge Sd2 Firmware
Ge Sd4 Firmware
Ge Sd9 Firmware
Ge Td220max Firmware
Ge Td220x Firmware
NA
CVE-2022-24117
Certain General Electric Renewable Energy products download firmware without an integrity check. This affects iNET and iNET II prior to 8.3.0, SD prior to 6.4.7, TD220X prior to 2.0.16, and TD220MAX prior to 1.2.6.
Ge Inet 900 Firmware
Ge Inet Ii 900 Firmware
Ge Sd1 Firmware
Ge Sd2 Firmware
Ge Sd4 Firmware
Ge Sd9 Firmware
Ge Td220max Firmware
Ge Td220x Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »