Lantronix Premierwave 2050 Firmware vulnerabilities
23 known vulnerabilities affecting lantronix/premierwave_2050_firmware.
Total CVEs
23
CISA KEV
0
Public exploits
1
Exploited in wild
2
Severity breakdown
CRITICAL16HIGH4MEDIUM3
Vulnerabilities
Page 2 of 2
CVE-2021-21896P3MEDIUMCVSS 6.5v8.9.0.02021-12-22
CVE-2021-21896 [MEDIUM] CWE-22 CVE-2021-21896: A directory traversal vulnerability exists in the Web Manager FsBrowseClean functionality of Lantron
A directory traversal vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A specially crafted HTTP request can lead to arbitrary file deletion. An attacker can make an authenticated HTTP request to trigger this vulnerability.
nvd
CVE-2021-21878P4MEDIUMCVSS 4.9v8.9.0.02021-12-22
CVE-2021-21878 [MEDIUM] CWE-668 CVE-2021-21878: A local file inclusion vulnerability exists in the Web Manager Applications and FsBrowse functionali
A local file inclusion vulnerability exists in the Web Manager Applications and FsBrowse functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted series of HTTP requests can lead to local file inclusion. An attacker can make a series of authenticated HTTP requests to trigger this vulnerability.
nvd
CVE-2021-21886P4MEDIUMCVSS 4.3v8.9.0.02021-12-22
CVE-2021-21886 [MEDIUM] CWE-22 CVE-2021-21886: A directory traversal vulnerability exists in the Web Manager FSBrowsePage functionality of Lantroni
A directory traversal vulnerability exists in the Web Manager FSBrowsePage functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially crafted HTTP request can lead to information disclosure. An attacker can make an authenticated HTTP request to trigger this vulnerability.
nvd
← Previous2 / 2