Vonets

Vap11g-300 Firmware

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.7

CVE-2024-46327

  • EPSS 0.09%
  • Veröffentlicht 26.09.2024 14:15:09
  • Zuletzt bearbeitet 24.06.2025 14:58:09

An issue in the Http_handle object of VONETS VAP11G-300 v3.3.23.6.9 allows attackers to access sensitive files via a directory traversal.

8

CVE-2024-46328

  • EPSS 0.05%
  • Veröffentlicht 26.09.2024 14:15:09
  • Zuletzt bearbeitet 29.05.2025 17:21:47

VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain hardcoded credentials for several different privileged accounts, including root.

8

CVE-2024-46329

  • EPSS 0.08%
  • Veröffentlicht 26.09.2024 14:15:09
  • Zuletzt bearbeitet 29.05.2025 17:20:14

VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the SystemCommand object.

7.4

CVE-2024-46330

  • EPSS 0.13%
  • Veröffentlicht 26.09.2024 14:15:09
  • Zuletzt bearbeitet 04.06.2025 16:16:02

VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the iptablesWebsFilterRun object.

9.8

CVE-2024-42001

  • EPSS 0.12%
  • Veröffentlicht 12.08.2024 13:38:32
  • Zuletzt bearbeitet 20.08.2024 16:37:05

An improper authentication vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior enables an unauthenticated remote attacker to bypass authentication via a specially c...

7.5

CVE-2024-41936

  • EPSS 0.14%
  • Veröffentlicht 12.08.2024 13:38:31
  • Zuletzt bearbeitet 20.08.2024 16:26:54

A directory traversal vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to read arbitrary files and bypass authentication.

7.5

CVE-2024-39815

  • EPSS 0.78%
  • Veröffentlicht 12.08.2024 13:38:25
  • Zuletzt bearbeitet 20.08.2024 17:14:18

Improper check or handling of exceptional conditions vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to cause a denial of...

9.8

CVE-2024-39791

  • EPSS 4.54%
  • Veröffentlicht 12.08.2024 13:38:24
  • Zuletzt bearbeitet 20.08.2024 17:15:56

Stack-based buffer overflow vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated remote attacker to execute arbitrary code.

9.9

CVE-2024-37023

  • EPSS 0.51%
  • Veröffentlicht 12.08.2024 13:38:22
  • Zuletzt bearbeitet 20.08.2024 17:12:03

Multiple OS command injection vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an authenticated remote attacker to execute arbitrary OS commands via various ...

8.6

CVE-2024-29082

  • EPSS 0.06%
  • Veröffentlicht 12.08.2024 13:38:18
  • Zuletzt bearbeitet 20.08.2024 17:11:31

Improper access control vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attacker to bypass authentication and factory reset the devi...