|
195261
|
9.9 |
CRITICAL
Network
|
lantronix
|
premierwave_2050_firmware
|
An OS command injection vulnerability exists in the Web Manager Wireless Network Scanner functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to command ex…
|
CWE-78
OS Command
|
CVE-2021-21881
|
2024-11-21 14:49 |
2021-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195262
|
7.2 |
HIGH
Network
|
lantronix
|
premierwave_2050_firmware
|
A directory traversal vulnerability exists in the Web Manager FsCopyFile functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to local file inclusion. An a…
|
CWE-22
Path Traversal
|
CVE-2021-21880
|
2024-11-21 14:49 |
2021-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195263
|
8.8 |
HIGH
Network
|
lantronix
|
premierwave_2050
|
A directory traversal vulnerability exists in the Web Manager File Upload functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary file overwrite.…
|
CWE-22
Path Traversal
|
CVE-2021-21879
|
2024-11-21 14:49 |
2021-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195264
|
4.9 |
MEDIUM
Network
|
lantronix
|
premierwave_2050_firmware
|
A local file inclusion vulnerability exists in the Web Manager Applications and FsBrowse functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted series of HTTP requests can lead to…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2021-21878
|
2024-11-21 14:49 |
2021-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195265
|
9.1 |
CRITICAL
Network
|
lantronix
|
premierwave_2050_firmware
|
Specially-crafted HTTP requests can lead to arbitrary command execution in “GET” requests. An attacker can make authenticated HTTP requests to trigger this vulnerability.
|
CWE-78
OS Command
|
CVE-2021-21877
|
2024-11-21 14:49 |
2021-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195266
|
9.1 |
CRITICAL
Network
|
lantronix
|
premierwave_2050_firmware
|
Specially-crafted HTTP requests can lead to arbitrary command execution in PUT requests. An attacker can make authenticated HTTP requests to trigger this vulnerability.
|
CWE-78
OS Command
|
CVE-2021-21876
|
2024-11-21 14:49 |
2021-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195267
|
9.1 |
CRITICAL
Network
|
lantronix
|
premierwave_2050_firmware
|
A specially-crafted HTTP request can lead to arbitrary command execution in EC keypasswd parameter. An attacker can make an authenticated HTTP request to trigger this vulnerability.
|
CWE-78
OS Command
|
CVE-2021-21875
|
2024-11-21 14:49 |
2021-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195268
|
9.1 |
CRITICAL
Network
|
lantronix
|
premierwave_2050_firmware
|
A specially-crafted HTTP request can lead to arbitrary command execution in DSA keypasswd parameter. An attacker can make an authenticated HTTP request to trigger this vulnerability.
|
CWE-78
OS Command
|
CVE-2021-21874
|
2024-11-21 14:49 |
2021-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195269
|
9.1 |
CRITICAL
Network
|
lantronix
|
premierwave_2050_firmware
|
A specially-crafted HTTP request can lead to arbitrary command execution in RSA keypasswd parameter. An attacker can make an authenticated HTTP request to trigger this vulnerability.
|
CWE-78
OS Command
|
CVE-2021-21873
|
2024-11-21 14:49 |
2021-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195270
|
9.9 |
CRITICAL
Network
|
lantronix
|
premierwave_2050_firmware
|
An OS command injection vulnerability exists in the Web Manager Diagnostics: Traceroute functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted HTTP request can lead to arbitrary c…
|
CWE-78
OS Command
|
CVE-2021-21872
|
2024-11-21 14:49 |
2021-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
