Openwrt

Openwrt

124 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2019-5102

Exploit
  • EPSS 0.22%
  • Veröffentlicht 18.11.2019 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:44:21

An exploitable information leak vulnerability exists in the ustream-ssl library of OpenWrt, versions 18.06.4 and 15.05.1. When connecting to a remote server, the server's SSL certificate is checked but no action is taken when the certificate is inval...

5.9

CVE-2019-5101

Exploit
  • EPSS 0.22%
  • Veröffentlicht 18.11.2019 18:15:09
  • Zuletzt bearbeitet 21.11.2024 04:44:21

An exploitable information leak vulnerability exists in the ustream-ssl library of OpenWrt, versions 18.06.4 and 15.05.1. When connecting to a remote server, the server's SSL certificate is checked but no action is taken when the certificate is inval...

6.1

CVE-2018-19630

Exploit
  • EPSS 0.33%
  • Veröffentlicht 28.11.2018 10:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:19

cgi_handle_request in uhttpd in OpenWrt through 18.06.1 and LEDE through 17.01 has unauthenticated reflected XSS via the URI, as demonstrated by a cgi-bin/?[XSS] URI.

8.8

CVE-2018-11116

  • EPSS 1.65%
  • Veröffentlicht 19.06.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:41

OpenWrt mishandles access control in /etc/config/rpcd and the /usr/share/rpcd/acl.d files, which allows remote authenticated users to call arbitrary methods (i.e., achieve ubus access over HTTP) that were only supposed to be accessible to a specific ...