Mercusys Mercury X18G Firmware vulnerabilities
4 known vulnerabilities affecting mercusys/mercury_x18g_firmware.
Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2021-23241P3MEDIUMCVSS 5.3PoCv1.0.52021-01-07
CVE-2021-23241 [MEDIUM] CWE-22 CVE-2021-23241: MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ in conjunction with a loginLes
MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ in conjunction with a loginLess or login.htm URI (for authentication bypass) to the web server, as demonstrated by the /loginLess/../../etc/passwd URI.
nvd
CVE-2021-25811P3HIGHCVSS 7.5v1.0.52021-04-29
CVE-2021-25811 [HIGH] CVE-2021-25811: MERCUSYS Mercury X18G 1.0.5 devices allow Denial of service via a crafted value to the POST listen_h
MERCUSYS Mercury X18G 1.0.5 devices allow Denial of service via a crafted value to the POST listen_http_lan parameter. Upon subsequent device restarts after this vulnerability is exploted the device will not be able to access the webserver unless the listen_http_lan parameter to uhttpd.json is manually fixed.
nvd
CVE-2021-23242P4MEDIUMCVSS 5.3v1.0.52021-01-07
CVE-2021-23242 [MEDIUM] CWE-22 CVE-2021-23242: MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ to the UPnP server, as demonst
MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ to the UPnP server, as demonstrated by the /../../conf/template/uhttpd.json URI.
nvd
CVE-2021-25810P4MEDIUMCVSS 6.1v1.0.52021-04-29
CVE-2021-25810 [MEDIUM] CWE-79 CVE-2021-25810: Cross site Scripting (XSS) vulnerability in MERCUSYS Mercury X18G 1.0.5 devices, via crafted values
Cross site Scripting (XSS) vulnerability in MERCUSYS Mercury X18G 1.0.5 devices, via crafted values to the 'src_dport_start', 'src_dport_end', and 'dest_port' parameters.
nvd