Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Wbr\-6013_firmware
(Level1)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 21 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2024-07-08 | CVE-2023-34435 | A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network packets can lead to arbitrary firmware update. An attacker can provide a malicious file to trigger this vulnerability. | Wbr\-6013_firmware, Rtl819x_jungle_software_development_kit | 7.2 | ||
2024-07-08 | CVE-2023-45215 | A stack-based buffer overflow vulnerability exists in the boa setRepeaterSsid functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability. | Wbr\-6013_firmware, Rtl819x_jungle_software_development_kit | 7.2 | ||
2024-07-08 | CVE-2023-41251 | A stack-based buffer overflow vulnerability exists in the boa formRoute functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability. | Wbr\-6013_firmware, Rtl819x_jungle_software_development_kit | 7.2 | ||
2024-07-08 | CVE-2023-45742 | An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability. | Wbr\-6013_firmware, Rtl819x_jungle_software_development_kit | 7.2 | ||
2024-07-08 | CVE-2023-47677 | A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network request can lead to CSRF. An attacker can send an HTTP request to trigger this vulnerability. | Wbr\-6013_firmware, Rtl819x_jungle_software_development_kit | 8.8 | ||
2024-07-08 | CVE-2023-46685 | A hard-coded password vulnerability exists in the telnetd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623. A set of specially crafted network packets can lead to arbitrary command execution. | Wbr\-6013_firmware | 9.8 | ||
2024-07-08 | CVE-2023-47856 | A stack-based buffer overflow vulnerability exists in the boa set_RadvdPrefixParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger this vulnerability. | Wbr\-6013_firmware, Rtl819x_jungle_software_development_kit | 7.2 | ||
2024-07-08 | CVE-2023-48270 | A stack-based buffer overflow vulnerability exists in the boa formDnsv6 functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability. | Wbr\-6013_firmware, Rtl819x_jungle_software_development_kit | 7.2 | ||
2024-07-08 | CVE-2023-49073 | A stack-based buffer overflow vulnerability exists in the boa formFilter functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability. | Wbr\-6013_firmware, Rtl819x_jungle_software_development_kit | 7.2 | ||
2024-07-08 | CVE-2023-49593 | Leftover debug code exists in the boa formSysCmd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623. A specially crafted network request can lead to arbitrary command execution. | Wbr\-6013_firmware | 7.2 |