Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netis-systems vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-20076
On Netis DL4323 devices, XSS exists via the form2Ddns.cgi username parameter (DynDns settings of the Dynamic DNS Configuration).
Netis-systems Dl4343 Firmware -
NA
CVE-2018-25069
A vulnerability classified as critical has been found in Netis Netcore Router. This affects an unknown part. The manipulation leads to use of hard-coded password. It is possible to initiate the attack remotely. The identifier VDB-217593 was assigned to this vulnerability.
Netis-systems Netcore Router Firmware -
NA
CVE-2023-0114
A vulnerability was found in Netis Netcore Router. It has been rated as problematic. Affected by this issue is some unknown functionality of the file param.file.tgz of the component Backup Handler. The manipulation leads to cleartext storage in a file or on disk. Local access is ...
Netis-systems Netcore Router Firmware -
6.8
CVSSv2
CVE-2018-6391
A cross-site request forgery web vulnerability has been discovered on Netis WF2419 V2.2.36123 devices. A remote attacker is able to delete Address Reservation List settings.
Netis-systems Wf2419 Firmware 2.2.36123
NA
CVE-2023-43893
Netis N3Mv2-V1.0.1.865 exists to contain a command injection vulnerability via the wakeup_mac parameter in the Wake-On-LAN (WoL) function. This vulnerability is exploited via a crafted payload.
Netis-systems N3m Firmware 1.0.1.865
3.5
CVSSv2
CVE-2018-5967
Netis WF2419 V2.2.36123 devices allow XSS via the Description parameter on the Bandwidth Control Rule Settings page.
Netis-systems Wf2419 Firmware 2.2.36123
3.5
CVSSv2
CVE-2018-6190
Netis WF2419 V3.2.41381 devices allow XSS via the Description field on the MAC Filtering page.
Netis-systems Wf2419 Firmware 3.2.41381
1 EDB exploit
NA
CVE-2023-45463
Netis N3Mv2-V1.0.1.865 exists to contain a buffer overflow via the hostName parameter in the FUN_0040dabc function. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted input.
Netis-systems N3m Firmware 1.0.1.865
NA
CVE-2023-45464
Netis N3Mv2-V1.0.1.865 exists to contain a buffer overflow via the servDomain parameter. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted input.
Netis-systems N3m Firmware 1.0.1.865
NA
CVE-2023-45465
Netis N3Mv2-V1.0.1.865 exists to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings.
Netis-systems N3m Firmware 1.0.1.865
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »