CVE-2019-17224
- EPSS 0.43%
- Published 28.10.2019 15:15:14
- Last modified 21.11.2024 04:31:53
The web interface of the Compal Broadband CH7465LG modem (version CH7465LG-NCIP-6.12.18.25-2p6-NOSH) is vulnerable to a /%2f/ path traversal attack, which can be exploited in order to test for the existence of a file pathname outside of the web root ...
- EPSS 1.62%
- Published 11.10.2019 11:15:10
- Last modified 21.11.2024 04:32:23
The setter.xml component of the Common Gateway Interface on Compal CH7465LG 6.12.18.25-2p4 devices does not properly validate ping command arguments, which allows remote authenticated users to execute OS commands as root via shell metacharacters in t...
CVE-2019-13025
- EPSS 10.81%
- Published 02.10.2019 15:15:10
- Last modified 21.11.2024 04:24:03
Compal CH7465LG CH7465LG-NCIP-6.12.18.24-5p8-NOSH devices have Incorrect Access Control because of Improper Input Validation. The attacker can send a maliciously modified POST (HTTP) request containing shell commands, which will be executed on the de...