Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
router vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-39286
A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect up to and including 9.6.2304.102 could allow an unauthenticated malicious user to perform a Cross Site Request Forgery (CSRF) attack due to insufficient request validation. A successful exploit coul...
Mitel Connect Mobility Router
7.5
CVSSv2
CVE-2006-2562
ZyXEL P-335WT router allows remote malicious users to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary traffic.
Zyxel P-335wt Router
9.3
CVSSv2
CVE-2007-6730
Multiple cross-site request forgery (CSRF) vulnerabilities in the web management interface in the ZyXEL P-330W router allow remote malicious users to hijack the authentication of administrators for requests that (1) enable remote router management via goform/formRmtMgt or (2) mod...
Zyxel P-330w Router
NA
CVE-2023-26317
A vulnerability has been discovered in Xiaomi routers that could allow command injection through an external interface. This vulnerability arises from inadequate filtering of responses returned from the external interface. Attackers could exploit this vulnerability by hijacking t...
Mi Xiaomi Router Firmware
5
CVSSv2
CVE-1999-1524
FlowPoint DSL router firmware versions before 3.0.8 allows a remote malicious user to exploit a password recovery feature from the network and conduct brute force password guessing, instead of limiting the feature to the serial console port.
Flowpoint Flowpoint Dsl Router
4.3
CVSSv2
CVE-2010-0607
Cross-site scripting (XSS) vulnerability in Forms/status_statistics_1 in the Sterlite SAM300 AX Router allows remote malicious users to inject arbitrary web script or HTML via the Stat_Radio parameter.
Sterlitetechnologies Sam300 Ax Router
1 EDB exploit
NA
CVE-2020-14140
When Xiaomi router firmware is updated in 2020, there is an unauthenticated API that can reveal WIFI password vulnerability. This vulnerability is caused by the lack of access control policies on some API interfaces. Attackers can exploit this vulnerability to enter the backgroun...
Mi Xiaomi Router Firmware
7.5
CVSSv2
CVE-2011-3601
Buffer overflow in the process_ra function in the router advertisement daemon (radvd) prior to 1.8.2 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative value in a label_len value.
Litech Router Advertisement Daemon
4.4
CVSSv2
CVE-2011-3603
The router advertisement daemon (radvd) prior to 1.8.2 does not properly handle errors in the privsep_init function, which causes the radvd daemon to run as root and has an unspecified impact.
Litech Router Advertisement Daemon
9.3
CVSSv2
CVE-2007-4733
The Aztech DSL600EU router, when WAN access to the web interface is disabled, does not properly block inbound traffic on TCP port 80, which allows remote malicious users to connect to the web interface by guessing a TCP sequence number, possibly involving spoofing of an ARP packe...
Aztech Dsl 600eu Router
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »