JZP018/vuln03

JZP018/vuln03

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-45493 ↗	Dec 23, 2025Tuesday, 23 December 2025, 16:16	6.5 MEDIUM	—
Netgear EX8000 V1.0.0.126 is vulnerable to Command Injection via the iface parameter in the action_bandwidth function.
CVE-2025-50526 ↗	Dec 23, 2025Tuesday, 23 December 2025, 16:16	9.8 CRITICAL	—
Netgear EX8000 V1.0.0.126 was discovered to contain a command injection vulnerability via the switch_status function.
CVE-2025-45490 ↗	May 6, 2025Tuesday, 6 May 2025, 16:15	9.8 CRITICAL	—
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.ddnsStatus DynDNS function via the password parameter.
CVE-2025-45491 ↗	May 6, 2025Tuesday, 6 May 2025, 16:15	9.8 CRITICAL	—
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.ddnsStatus DynDNS function via the username parameter.
CVE-2025-45492 ↗	May 6, 2025Tuesday, 6 May 2025, 16:15	9.8 CRITICAL	—
Netgear EX8000 V1.0.0.126 is vulnerable to Command Injection via the Iface parameter in the action_wireless function.
CVE-2025-45487 ↗	May 6, 2025Tuesday, 6 May 2025, 16:15	9.8 CRITICAL	—
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.InternetConnection function.
CVE-2025-45488 ↗	May 6, 2025Tuesday, 6 May 2025, 16:15	9.8 CRITICAL	—
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.ddnsStatus DynDNS function via the mailex parameter.
CVE-2025-45489 ↗	May 6, 2025Tuesday, 6 May 2025, 16:15	9.8 CRITICAL	—
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.ddnsStatus DynDNS function via the hostname parameter.