Robustel R1510 vulnerabilities
26 known vulnerabilities affecting robustel/r1510.
Total CVEs
26
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL13HIGH12LOW1
Vulnerabilities
Page 1 of 2
CVE-2022-28127P2CRITICALCVSS 9.1v3.3.02022-06-30
CVE-2022-28127 [CRITICAL] CWE-20 CVE-2022-28127: A data removal vulnerability exists in the web_server /action/remove/ API functionality of Robustel
A data removal vulnerability exists in the web_server /action/remove/ API functionality of Robustel R1510 3.3.0. A specially-crafted network request can lead to arbitrary file deletion. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2022-33313P2CRITICALCVSS 9.8v3.3.02022-06-30
CVE-2022-33313 [CRITICAL] CWE-78 CVE-2022-33313: Multiple command injection vulnerabilities exist in the web_server action endpoints functionalities
Multiple command injection vulnerabilities exist in the web_server action endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The `/action/import_https_cert_file/` API is affected by command injecti
nvd
CVE-2022-33312P2CRITICALCVSS 9.8v3.3.02022-06-30
CVE-2022-33312 [CRITICAL] CWE-78 CVE-2022-33312: Multiple command injection vulnerabilities exist in the web_server action endpoints functionalities
Multiple command injection vulnerabilities exist in the web_server action endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The `/action/import_cert_file/` API is affected by command injection vul
nvd
CVE-2022-33314P2CRITICALCVSS 9.8v3.3.02022-06-30
CVE-2022-33314 [CRITICAL] CWE-78 CVE-2022-33314: Multiple command injection vulnerabilities exist in the web_server action endpoints functionalities
Multiple command injection vulnerabilities exist in the web_server action endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The `/action/import_sdk_file/` API is affected by command injection vuln
nvd
CVE-2022-33326P2CRITICALCVSS 9.8v3.3.02022-06-30
CVE-2022-33326 [CRITICAL] CWE-78 CVE-2022-33326: Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of
Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network packets can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The `/ajax/config_rollback/` API is affected by a command injection vulne
nvd
CVE-2022-33329P2CRITICALCVSS 9.8v3.3.02022-06-30
CVE-2022-33329 [CRITICAL] CWE-78 CVE-2022-33329: Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of
Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network packets can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The `/ajax/set_sys_time/` API is affected by a command injection vulnerab
nvd
CVE-2022-33325P2CRITICALCVSS 9.8v3.3.02022-06-30
CVE-2022-33325 [CRITICAL] CWE-78 CVE-2022-33325: Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of
Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network packets can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The `/ajax/clear_tools_log/` API is affected by command injection vulnera
nvd
CVE-2022-33327P2CRITICALCVSS 9.8v3.3.02022-06-30
CVE-2022-33327 [CRITICAL] CWE-78 CVE-2022-33327: Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of
Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network packets can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The `/ajax/remove_sniffer_raw_log/` API is affected by a command injectio
nvd
CVE-2022-33328P2CRITICALCVSS 9.8v3.3.02022-06-30
CVE-2022-33328 [CRITICAL] CWE-78 CVE-2022-33328: Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of
Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities of Robustel R1510 3.3.0. A specially-crafted network packets can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.The `/ajax/remove/` API is affected by a command injection vulnerability.
nvd
CVE-2022-32765P2CRITICALCVSS 9.8v3.1.16v3.3.02022-10-25
CVE-2022-32765 [CRITICAL] CWE-77 CVE-2022-32765: An OS command injection vulnerability exists in the sysupgrade command injection functionality of Ro
An OS command injection vulnerability exists in the sysupgrade command injection functionality of Robustel R1510 3.1.16 and 3.3.0. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2022-33150P2CRITICALCVSS 9.8v3.1.162022-10-25
CVE-2022-33150 [CRITICAL] CWE-78 CVE-2022-33150: An OS command injection vulnerability exists in the js_package install functionality of Robustel R15
An OS command injection vulnerability exists in the js_package install functionality of Robustel R1510 3.1.16. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2022-32585P2CRITICALCVSS 9.8v3.3.02022-06-30
CVE-2022-32585 [CRITICAL] CWE-489 CVE-2022-32585: A command execution vulnerability exists in the clish art2 functionality of Robustel R1510 3.3.0. A
A command execution vulnerability exists in the clish art2 functionality of Robustel R1510 3.3.0. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2022-33897P3CRITICALCVSS 9.1v3.1.162022-10-25
CVE-2022-33897 [CRITICAL] CWE-22 CVE-2022-33897: A directory traversal vulnerability exists in the web_server /ajax/remove/ functionality of Robustel
A directory traversal vulnerability exists in the web_server /ajax/remove/ functionality of Robustel R1510 3.1.16. A specially-crafted network request can lead to arbitrary file deletion. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2022-34850P3HIGHCVSS 7.2v3.1.16v3.3.02022-10-25
CVE-2022-34850 [HIGH] CWE-78 CVE-2022-34850: An OS command injection vulnerability exists in the web_server /action/import_authorized_keys/ funct
An OS command injection vulnerability exists in the web_server /action/import_authorized_keys/ functionality of Robustel R1510 3.1.16 and 3.3.0. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2022-35261P3HIGHCVSS 7.5v3.1.16v3.3.02022-10-25
CVE-2022-35261 [HIGH] CWE-125 CVE-2022-35261: A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510 3.1.16 and 3.3.0. A specially-crafted network request can lead to denial of service. An attacker can send a sequence of requests to trigger this vulnerability.This denial of service is in the `/action/import_authorized_keys/` API.
nvd
CVE-2022-35271P3HIGHCVSS 7.5v3.1.16v3.3.02022-10-25
CVE-2022-35271 [HIGH] CWE-125 CVE-2022-35271: A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510 3.1.16 and 3.3.0. A specially-crafted network request can lead to denial of service. An attacker can send a sequence of requests to trigger this vulnerability.This denial of service is in the `/action/import_cert_file/` API.
nvd
CVE-2022-35269P3HIGHCVSS 7.5v3.1.16v3.3.02022-10-25
CVE-2022-35269 [HIGH] CWE-125 CVE-2022-35269: A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510 3.1.16 and 3.3.0. A specially-crafted network request can lead to denial of service. An attacker can send a sequence of requests to trigger this vulnerability.This denial of service is in the `/action/import_e2c_json_file/` API.
nvd
CVE-2022-35266P3HIGHCVSS 7.5v3.1.16v3.3.02022-10-25
CVE-2022-35266 [HIGH] CWE-125 CVE-2022-35266: A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510 3.1.16 and 3.3.0. A specially-crafted network request can lead to denial of service. An attacker can send a sequence of requests to trigger this vulnerability.This denial of service is in the `/action/import_firmware/` API.
nvd
CVE-2022-35270P3HIGHCVSS 7.5v3.1.16v3.3.02022-10-25
CVE-2022-35270 [HIGH] CWE-125 CVE-2022-35270: A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510 3.1.16 and 3.3.0. A specially-crafted network request can lead to denial of service. An attacker can send a sequence of requests to trigger this vulnerability.This denial of service is in the `/action/import_wireguard_cert_file/` API.
nvd
CVE-2022-35265P3HIGHCVSS 7.5v3.1.16v3.3.02022-10-25
CVE-2022-35265 [HIGH] CWE-125 CVE-2022-35265: A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel R1510 3.1.16 and 3.3.0. A specially-crafted network request can lead to denial of service. An attacker can send a sequence of requests to trigger this vulnerability.This denial of service is in the `/action/import_nodejs_app/` API.
nvd
1 / 2Next →