Netcommwireless Hspa 3G10Wve Firmware vulnerabilities
2 known vulnerabilities affecting netcommwireless/hspa_3g10wve_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2015-6024P2CRITICALCVSS 9.8PoCv3g10wve-l101-s306ets-c01_r032017-02-09
CVE-2015-6024 [CRITICAL] CWE-77 CVE-2015-6024: ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101-S306ETS-
ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101-S306ETS-C01_R05 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the DIA_IPADDRESS parameter.
nvd
CVE-2015-6023P2HIGHCVSS 7.3PoCv3g10wve-l101-s306ets-c01_r032017-02-09
CVE-2015-6023 [HIGH] CWE-284 CVE-2015-6023: ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101-S306ETS-
ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101-S306ETS-C01_R05 allows remote attackers to bypass intended access restrictions via a direct request. NOTE: this issue can be combined with CVE-2015-6024 to execute arbitrary commands.
nvd