Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
router vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-39286
A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect up to and including 9.6.2304.102 could allow an unauthenticated malicious user to perform a Cross Site Request Forgery (CSRF) attack due to insufficient request validation. A successful exploit coul...
Mitel Connect Mobility Router
9.8
CVSSv3
CVE-2023-26317
A vulnerability has been discovered in Xiaomi routers that could allow command injection through an external interface. This vulnerability arises from inadequate filtering of responses returned from the external interface. Attackers could exploit this vulnerability by hijacking t...
Mi Xiaomi Router Firmware
NA
CVE-2007-4733
The Aztech DSL600EU router, when WAN access to the web interface is disabled, does not properly block inbound traffic on TCP port 80, which allows remote malicious users to connect to the web interface by guessing a TCP sequence number, possibly involving spoofing of an ARP packe...
Aztech Dsl 600eu Router
NA
CVE-2007-6729
Cross-site scripting (XSS) vulnerability in the web management interface in the ZyXEL P-330W router allows remote malicious users to inject arbitrary web script or HTML via the pingstr parameter and other unspecified vectors.
Zyxel P-330w Router
NA
CVE-2011-3601
Buffer overflow in the process_ra function in the router advertisement daemon (radvd) prior to 1.8.2 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative value in a label_len value.
Litech Router Advertisement Daemon
NA
CVE-2011-3603
The router advertisement daemon (radvd) prior to 1.8.2 does not properly handle errors in the privsep_init function, which causes the radvd daemon to run as root and has an unspecified impact.
Litech Router Advertisement Daemon
NA
CVE-2010-0607
Cross-site scripting (XSS) vulnerability in Forms/status_statistics_1 in the Sterlite SAM300 AX Router allows remote malicious users to inject arbitrary web script or HTML via the Stat_Radio parameter.
Sterlitetechnologies Sam300 Ax Router
1 EDB exploit
NA
CVE-2007-6730
Multiple cross-site request forgery (CSRF) vulnerabilities in the web management interface in the ZyXEL P-330W router allow remote malicious users to hijack the authentication of administrators for requests that (1) enable remote router management via goform/formRmtMgt or (2) mod...
Zyxel P-330w Router
NA
CVE-2011-3602
Directory traversal vulnerability in device-linux.c in the router advertisement daemon (radvd) prior to 1.8.2 allows local users to overwrite arbitrary files, and remote malicious users to overwrite certain files, via a .. (dot dot) in an interface name. NOTE: this can be leverag...
Litech Router Advertisement Daemon
NA
CVE-2011-3604
The process_ra function in the router advertisement daemon (radvd) prior to 1.8.2 allows remote malicious users to cause a denial of service (stack-based buffer over-read and crash) via unspecified vectors.
Litech Router Advertisement Daemon
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »