cbcvebase.

Mercusys Mercury X18G Firmware vulnerabilities

4 known vulnerabilities affecting mercusys/mercury_x18g_firmware.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2021-23241P3MEDIUMCVSS 5.3PoCv1.0.52021-01-07
CVE-2021-23241 [MEDIUM] CWE-22 CVE-2021-23241: MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ in conjunction with a loginLes MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ in conjunction with a loginLess or login.htm URI (for authentication bypass) to the web server, as demonstrated by the /loginLess/../../etc/passwd URI.
nvd
CVE-2021-25811P3HIGHCVSS 7.5v1.0.52021-04-29
CVE-2021-25811 [HIGH] CVE-2021-25811: MERCUSYS Mercury X18G 1.0.5 devices allow Denial of service via a crafted value to the POST listen_h MERCUSYS Mercury X18G 1.0.5 devices allow Denial of service via a crafted value to the POST listen_http_lan parameter. Upon subsequent device restarts after this vulnerability is exploted the device will not be able to access the webserver unless the listen_http_lan parameter to uhttpd.json is manually fixed.
nvd
CVE-2021-23242P4MEDIUMCVSS 5.3v1.0.52021-01-07
CVE-2021-23242 [MEDIUM] CWE-22 CVE-2021-23242: MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ to the UPnP server, as demonst MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ to the UPnP server, as demonstrated by the /../../conf/template/uhttpd.json URI.
nvd
CVE-2021-25810P4MEDIUMCVSS 6.1v1.0.52021-04-29
CVE-2021-25810 [MEDIUM] CWE-79 CVE-2021-25810: Cross site Scripting (XSS) vulnerability in MERCUSYS Mercury X18G 1.0.5 devices, via crafted values Cross site Scripting (XSS) vulnerability in MERCUSYS Mercury X18G 1.0.5 devices, via crafted values to the 'src_dport_start', 'src_dport_end', and 'dest_port' parameters.
nvd
Mercusys Mercury X18G Firmware vulnerabilities | cvebase