CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 1CVE-2023-47677
https://notcve.org/view.php?id=CVE-2023-47677
08 Jul 2024 — A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network request can lead to CSRF. An attacker can send an HTTP request to trigger this vulnerability. Existe una vulnerabilidad de cross-site request forgery (csrf) en la funcionalidad de protección boa CSRF de Realtek rtl819x Jungle SDK v3.4.11. Una solicitud de red especialmente manipulada puede generar CSRF. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1872 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-34435
https://notcve.org/view.php?id=CVE-2023-34435
08 Jul 2024 — A firmware update vulnerability exists in the boa formUpload functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted network packets can lead to arbitrary firmware update. An attacker can provide a malicious file to trigger this vulnerability. Existe una vulnerabilidad de actualización de firmware en la funcionalidad boa formUpload de Realtek rtl819x Jungle SDK v3.4.11. Unos paquetes de red especialmente manipulados pueden provocar una actualización arbitraria del firmware. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1874 • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2024-21778
https://notcve.org/view.php?id=CVE-2024-21778
08 Jul 2024 — A heap-based buffer overflow vulnerability exists in the configuration file mib_init_value_array functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted .dat file can lead to arbitrary code execution. An attacker can upload a malicious file to trigger this vulnerability. Existe una vulnerabilidad de desbordamiento de búfer de almacenamiento dinámico en la funcionalidad del archivo de configuración mib_init_value_array de Realtek rtl819x Jungle SDK v3.4.11. Un archivo .dat especialmente mani... • https://talosintelligence.com/vulnerability_reports/TALOS-2024-1911 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-46685
https://notcve.org/view.php?id=CVE-2023-46685
08 Jul 2024 — A hard-coded password vulnerability exists in the telnetd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623. A set of specially crafted network packets can lead to arbitrary command execution. Existe una vulnerabilidad de contraseña codificada en la funcionalidad telnetd de LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623. Un conjunto de paquetes de red especialmente manipulados puede provocar la ejecución de comandos arbitrarios. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1871 • CWE-259: Use of Hard-coded Password CWE-798: Use of Hard-coded Credentials •
CVSS: 8.3EPSS: 0%CPEs: 2EXPL: 0CVE-2023-49593
https://notcve.org/view.php?id=CVE-2023-49593
08 Jul 2024 — Leftover debug code exists in the boa formSysCmd functionality of LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623. A specially crafted network request can lead to arbitrary command execution. Existe código de depuración sobrante en la funcionalidad boa formSysCmd de LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623. Una solicitud de red especialmente manipulada puede provocar la ejecución de un comando arbitrario. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1873 • CWE-489: Active Debug Code •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-49073
https://notcve.org/view.php?id=CVE-2023-49073
08 Jul 2024 — A stack-based buffer overflow vulnerability exists in the boa formFilter functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability. Existe una vulnerabilidad de desbordamiento de búfer en la región stack de la memoria en la funcionalidad boa formFilter de Realtek rtl819x Jungle SDK v3.4.11. Una serie de solicitudes HTTP especialmente manipuladas pueden provoc... • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1875 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-48270
https://notcve.org/view.php?id=CVE-2023-48270
08 Jul 2024 — A stack-based buffer overflow vulnerability exists in the boa formDnsv6 functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability. Existe una vulnerabilidad de desbordamiento de búfer en la región stack de la memoria en la funcionalidad boa formDnsv6 de Realtek rtl819x Jungle SDK v3.4.11. Una serie de solicitudes de red especialmente manipuladas pueden pro... • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1876 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 1CVE-2023-45742
https://notcve.org/view.php?id=CVE-2023-45742
08 Jul 2024 — An integer overflow vulnerability exists in the boa updateConfigIntoFlash functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability. Existe una vulnerabilidad de desbordamiento de enteros en la funcionalidad boa updateConfigIntoFlash de Realtek rtl819x Jungle SDK v3.4.11. Una serie de solicitudes HTTP especialmente manipuladas pueden provocar la ejecución de ... • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1877 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-49595
https://notcve.org/view.php?id=CVE-2023-49595
08 Jul 2024 — A stack-based buffer overflow vulnerability exists in the boa rollback_control_code functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability. Existe una vulnerabilidad de desbordamiento de búfer en la región stack de la memoria en la funcionalidad boa rollback_control_code de Realtek rtl819x Jungle SDK v3.4.11. Una serie de solicitudes de red especialment... • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1878 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-45215
https://notcve.org/view.php?id=CVE-2023-45215
08 Jul 2024 — A stack-based buffer overflow vulnerability exists in the boa setRepeaterSsid functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability. Existe una vulnerabilidad de desbordamiento de búfer en la región stack de la memoria en la funcionalidad boa setRepeaterSsid de Realtek rtl819x Jungle SDK v3.4.11. Una serie de solicitudes de red especialmente manipulada... • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1891 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •