Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netis-systems vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-8985
On Netis WF2411 with firmware 2.1.36123 and other Netis WF2xxx devices (possibly WF2411 through WF2880), there is a stack-based buffer overflow that does not require authentication. This can cause denial of service (device restart) or remote code execution. This vulnerability can...
Netis-systems Wf2411 Firmware 2.1.36123
Netis-systems Wf2880 Firmware 2.1.36123
1 Github repository
7.5
CVSSv3
CVE-2019-19356
Netis WF2419 is vulnerable to authenticated Remote Code Execution (RCE) as root through the router Web management page. The vulnerability has been found in firmware version V1.2.31805 and V2.2.36123. After one is connected to this page, it is possible to execute system commands a...
Netis-systems Wf2419 Firmware 1.2.31805
Netis-systems Wf2419 Firmware 2.2.36123
2 Github repositories
9.8
CVSSv3
CVE-2021-26747
Netis WF2780 2.3.40404 and WF2411 1.1.29629 devices allow Shell Metacharacter Injection into the ping command, leading to remote code execution.
Netis-systems Wf2780 Firmware 2.3.40404
Netis-systems Wf2411 Firmware 1.1.29629
8.8
CVSSv3
CVE-2019-20074
On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page.
Netis-systems Dl4343 Firmware -
7.5
CVSSv3
CVE-2023-0113
A vulnerability was found in Netis Netcore Router up to 2.2.6. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file param.file.tgz of the component Backup Handler. The manipulation leads to information disclosure. The attack ...
Netis-systems Netcore Router Firmware -
5.5
CVSSv3
CVE-2023-0114
A vulnerability was found in Netis Netcore Router. It has been rated as problematic. Affected by this issue is some unknown functionality of the file param.file.tgz of the component Backup Handler. The manipulation leads to cleartext storage in a file or on disk. Local access is ...
Netis-systems Netcore Router Firmware -
6.1
CVSSv3
CVE-2019-20072
On Netis DL4323 devices, XSS exists via the form2Ddns.cgi hostname parameter (Dynamic DNS Configuration).
Netis-systems Dl4343 Firmware -
6.1
CVSSv3
CVE-2019-20075
On Netis DL4323 devices, pingrtt_v6.html has XSS (Ping6 Diagnostic).
Netis-systems Dl4343 Firmware -
9.8
CVSSv3
CVE-2018-25069
A vulnerability classified as critical has been found in Netis Netcore Router. This affects an unknown part. The manipulation leads to use of hard-coded password. It is possible to initiate the attack remotely. The identifier VDB-217593 was assigned to this vulnerability.
Netis-systems Netcore Router Firmware -
6.1
CVSSv3
CVE-2019-20070
On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi (aka the Keyword field of the URL Blocking Configuration).
Netis-systems Dl4343 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »