Openwrt

Openwrt

127 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2023-20796

  • EPSS 0.01%
  • Veröffentlicht 07.08.2023 04:15:13
  • Zuletzt bearbeitet 21.11.2024 07:41:32

In power, there is a possible memory corruption due to an incorrect bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07929790; Issue ID: A...

6.7

CVE-2023-20775

  • EPSS 0.02%
  • Veröffentlicht 04.07.2023 02:15:10
  • Zuletzt bearbeitet 21.11.2024 07:41:30

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07978760; Issu...

6.7

CVE-2023-20725

  • EPSS 0.01%
  • Veröffentlicht 06.06.2023 13:15:11
  • Zuletzt bearbeitet 07.01.2025 21:15:10

In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07734004 / A...

3.3

CVE-2023-20726

  • EPSS 0.02%
  • Veröffentlicht 15.05.2023 22:15:11
  • Zuletzt bearbeitet 24.01.2025 15:15:09

In mnld, there is a possible leak of GPS location due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS077359...

6.7

CVE-2023-20694

  • EPSS 0.01%
  • Veröffentlicht 15.05.2023 22:15:10
  • Zuletzt bearbeitet 23.01.2025 22:15:09

In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07733998 / A...

6.7

CVE-2023-20695

  • EPSS 0.01%
  • Veröffentlicht 15.05.2023 22:15:10
  • Zuletzt bearbeitet 23.01.2025 22:15:10

In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07734012 / A...

6.7

CVE-2023-20696

  • EPSS 0.01%
  • Veröffentlicht 15.05.2023 22:15:10
  • Zuletzt bearbeitet 23.01.2025 22:15:10

In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07856356 / A...

5.4

CVE-2023-24182

Exploit
  • EPSS 0.12%
  • Veröffentlicht 11.04.2023 01:15:07
  • Zuletzt bearbeitet 11.02.2025 17:15:15

LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the component /system/sshkeys.js.

7.5

CVE-2022-38333

  • EPSS 0.64%
  • Veröffentlicht 19.09.2022 17:15:14
  • Zuletzt bearbeitet 21.11.2024 07:16:16

Openwrt before v21.02.3 and Openwrt v22.03.0-rc6 were discovered to contain two skip loops in the function header_value(). This vulnerability allows attackers to access sensitive information via a crafted HTTP request.

5.4

CVE-2021-45904

Exploit
  • EPSS 0.28%
  • Veröffentlicht 27.12.2021 23:15:08
  • Zuletzt bearbeitet 21.11.2024 06:33:14

OpenWrt 21.02.1 allows XSS via the Port Forwards Add Name screen.