Skip to main content

Ilx F509 Firmware

7 CVEs product

Monthly

CVE-2024-23963 HIGH This Month

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine Halo9 devices. Rated high severity (CVSS 8.0), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Ilx F509 Firmware
NVD
CVSS 3.1
8.0
EPSS
0.1%
CVE-2024-23962 MEDIUM This Month

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Alpine Halo9 devices. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Information Disclosure Ilx F509 Firmware
NVD
CVSS 3.1
5.3
EPSS
0.9%
CVE-2024-23961 MEDIUM This Month

Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection Ilx F509 Firmware
NVD
CVSS 3.1
6.8
EPSS
1.0%
CVE-2024-23960 MEDIUM This Month

Alpine Halo9 Improper Verification of Cryptographic Signature Vulnerability. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Jwt Attack Ilx F509 Firmware
NVD
CVSS 3.1
4.6
EPSS
0.3%
CVE-2024-23935 HIGH This Week

Alpine Halo9 DecodeUTF7 Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 7.5), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Stack Overflow RCE Ilx F509 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2024-23924 MEDIUM This Month

Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection Ilx F509 Firmware
NVD
CVSS 3.1
6.8
EPSS
1.0%
CVE-2024-23923 HIGH This Week

Alpine Halo9 prh_l2_sar_data_ind Use-After-Free Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Use After Free RCE Memory Corruption Ilx F509 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.8%
EPSS 0% CVSS 8.0
HIGH This Month

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine Halo9 devices. Rated high severity (CVSS 8.0), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Ilx F509 Firmware
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Alpine Halo9 devices. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Information Disclosure Ilx F509 Firmware
NVD
EPSS 1% CVSS 6.8
MEDIUM This Month

Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection Ilx F509 Firmware
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

Alpine Halo9 Improper Verification of Cryptographic Signature Vulnerability. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Jwt Attack Ilx F509 Firmware
NVD
EPSS 0% CVSS 7.5
HIGH This Week

Alpine Halo9 DecodeUTF7 Stack-based Buffer Overflow Remote Code Execution Vulnerability. Rated high severity (CVSS 7.5), this vulnerability is no authentication required. No vendor patch available.

Buffer Overflow Stack Overflow RCE +1
NVD
EPSS 1% CVSS 6.8
MEDIUM This Month

Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection Ilx F509 Firmware
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Alpine Halo9 prh_l2_sar_data_ind Use-After-Free Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Use After Free RCE Memory Corruption +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy