CVSS: 7.7EPSS: 0%CPEs: 90EXPL: 0CVE-2018-0512
https://notcve.org/view.php?id=CVE-2018-0512
Devices with IP address setting tool "MagicalFinder" provided by I-O DATA DEVICE, INC. allow authenticated attackers to execute arbitrary OS commands via unspecified vectors. Los dispositivos con la herramienta de configuración de direcciones IP MagicalFinder proporcionada por I-O DATA DEVICE, INC. permiten que atacantes autenticados ejecuten comandos arbitrarios del sistema operativo mediante vectores sin especificar. • http://www.iodata.jp/support/information/2018/magicalfinder https://jvn.jp/en/jp/JVN36048131/index.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-2282
https://notcve.org/view.php?id=CVE-2017-2282
Buffer overflow in WN-AX1167GR firmware version 3.00 and earlier allows an attacker to execute arbitrary commands via unspecified vectors. Las versiones 3.00 y anteriores del firmware WN-AX1167GR permiten a los atacantes ejecutar comandos arbitrarios utilizando vectores no especificados. • http://www.iodata.jp/support/information/2017/wn-ax1167gr https://jvn.jp/en/jp/JVN01312667/index.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-2281
https://notcve.org/view.php?id=CVE-2017-2281
WN-AX1167GR firmware version 3.00 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors. Las versiones 3.00 y anteriores del firmware WN-AX1167GR permiten a los atacantes ejecutar comandos arbitrarios del sistema operativo utilizando vectores no especificados. • http://www.iodata.jp/support/information/2017/wn-ax1167gr https://jvn.jp/en/jp/JVN01312667/index.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-2280
https://notcve.org/view.php?id=CVE-2017-2280
WN-AX1167GR firmware version 3.00 and earlier uses hardcoded credentials which may allow an attacker that can access the device to execute arbitrary code on the device. Las versiones 3.00 y anteriores del firmware WN-AX1167GR utilizan credenciales embebidas que pueden permitir a un atacante acceder al dispositivo para ejecutar código arbitrario en él. • http://www.iodata.jp/support/information/2017/wn-ax1167gr https://jvn.jp/en/jp/JVN01312667/index.html • CWE-798: Use of Hard-coded Credentials •