Skip to main content
CVE-2019-7745 CRITICAL POC Act Now

JioFi 4 jmr1140 Amtel_JMR1140_R12.07 devices allow remote attackers to obtain the Wi-Fi password by making a cgi-bin/qcmap_web_cgi Page=GetWiFi_Setting request and then reading the wpa_security_key. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Jmr1140 Firmware
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
3.8%
CVE-2019-7564 CRITICAL POC Act Now

An issue was discovered on Shenzhen Coship WM3300 WiFi Router 5.0.0.55 devices. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Rt3052 Firmware Rt3050 Firmware Wm3300 Firmware Rt7620 Firmware
NVD
CVSS 3.0
9.8
EPSS
3.0%
CVE-2019-10712 CRITICAL Act Now

The Web-GUI on WAGO Series 750-88x (750-330, 750-352, 750-829, 750-831, 750-852, 750-880, 750-881, 750-882, 750-884, 750-885, 750-889) and Series 750-87x (750-830, 750-849, 750-871, 750-872, 750-873). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass 750 830 Firmware 750 849 Firmware 750 871 Firmware 750 872 Firmware +12
NVD
CVSS 3.0
9.8
EPSS
2.8%
CVE-2019-11560 CRITICAL Act Now

A buffer overflow vulnerability in the streaming server provided by hisilicon in HI3516 models allows an unauthenticated attacker to remotely run arbitrary code by sending a special RTSP over HTTP. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Memory Corruption Hi3516 Firmware
NVD GitHub
CVSS 3.0
9.8
EPSS
1.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy