Hytec Hwl-2511-Ss Firmware vulnerabilities
3 known vulnerabilities affecting hytec/hwl-2511-ss_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL3
Vulnerabilities
Page 1 of 1
CVE-2022-36553P1CRITICALCVSS 9.8ExploitedPoC≤ 1.052022-08-29
CVE-2022-36553 [CRITICAL] CWE-77 CVE-2022-36553: Hytec Inter HWL-2511-SS v1.05 and below was discovered to contain a command injection vulnerability
Hytec Inter HWL-2511-SS v1.05 and below was discovered to contain a command injection vulnerability via the component /www/cgi-bin/popen.cgi.
nvd
CVE-2022-36554P2CRITICALCVSS 9.8≤ 1.052022-08-29
CVE-2022-36554 [CRITICAL] CWE-77 CVE-2022-36554: A command injection vulnerability in the CLI (Command Line Interface) implementation of Hytec Inter
A command injection vulnerability in the CLI (Command Line Interface) implementation of Hytec Inter HWL-2511-SS v1.05 and below allows attackers to execute arbitrary commands with root privileges.
nvd
CVE-2022-36555P3CRITICALCVSS 9.8≤ 1.052022-08-29
CVE-2022-36555 [CRITICAL] CWE-326 CVE-2022-36555: Hytec Inter HWL-2511-SS v1.05 and below implements a SHA512crypt hash for the root account which can
Hytec Inter HWL-2511-SS v1.05 and below implements a SHA512crypt hash for the root account which can be easily cracked via a brute-force attack.
nvd