Skip to main content

Wifi Repeater Firmware

9 CVEs product

Monthly

CVE-2022-34575 MEDIUM POC This Month

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the key information of the device via accessing fctest.shtml. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Wifi Repeater Firmware
NVD GitHub
CVSS 3.1
5.7
EPSS
0.6%
CVE-2022-34574 MEDIUM POC This Month

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the key information of the device via accessing Tftpd32.ini. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Wifi Repeater Firmware
NVD GitHub
CVSS 3.1
5.7
EPSS
0.6%
CVE-2022-34573 MEDIUM POC This Month

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to arbitrarily configure device settings via accessing the page mb_wifibasic.shtml. Rated medium severity (CVSS 6.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Wifi Repeater Firmware
NVD GitHub
CVSS 3.1
6.3
EPSS
0.6%
CVE-2022-34572 MEDIUM POC This Month

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the telnet password via accessing the page tftp.txt. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Wifi Repeater Firmware
NVD GitHub
CVSS 3.1
5.7
EPSS
0.6%
CVE-2022-34571 HIGH POC This Week

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the system key information and execute arbitrary commands via accessing the page. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Wifi Repeater Firmware
NVD GitHub
CVSS 3.1
8.0
EPSS
0.9%
CVE-2017-8772 CRITICAL Act Now

On BE126 WIFI repeater 1.0 devices, an attacker can log into telnet (which is open by default) with default credentials as root (username:"root" password:"root") and can: 1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Wifi Repeater Firmware
NVD
CVSS 3.0
9.8
EPSS
0.3%
CVE-2017-8771 CRITICAL Act Now

On BE126 WIFI repeater 1.0 devices, an attacker can log into telnet (which is open by default) with default credentials as root (username:"root" password:"root"). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Wifi Repeater Firmware
NVD
CVSS 3.0
9.8
EPSS
0.4%
CVE-2017-8770 HIGH POC THREAT Act Now

There is LFD (local file disclosure) on BE126 WIFI repeater 1.0 devices that allows attackers to read the entire filesystem on the device via a crafted getpage parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 21.8%.

Information Disclosure Wifi Repeater Firmware
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
21.8%
CVE-2017-13713 HIGH POC This Week

T&W WIFI Repeater BE126 allows remote authenticated users to execute arbitrary code via shell metacharacters in the user parameter to cgi-bin/webupg. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Wifi Repeater Firmware
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
3.6%
EPSS 1% CVSS 5.7
MEDIUM POC This Month

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the key information of the device via accessing fctest.shtml. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Wifi Repeater Firmware
NVD GitHub
EPSS 1% CVSS 5.7
MEDIUM POC This Month

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the key information of the device via accessing Tftpd32.ini. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Wifi Repeater Firmware
NVD GitHub
EPSS 1% CVSS 6.3
MEDIUM POC This Month

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to arbitrarily configure device settings via accessing the page mb_wifibasic.shtml. Rated medium severity (CVSS 6.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Wifi Repeater Firmware
NVD GitHub
EPSS 1% CVSS 5.7
MEDIUM POC This Month

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the telnet password via accessing the page tftp.txt. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Wifi Repeater Firmware
NVD GitHub
EPSS 1% CVSS 8.0
HIGH POC This Week

An access control issue in Wavlink WiFi-Repeater RPTA2-77W.M4300.01.GD.2017Sep19 allows attackers to obtain the system key information and execute arbitrary commands via accessing the page. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Wifi Repeater Firmware
NVD GitHub
EPSS 0% CVSS 9.8
CRITICAL Act Now

On BE126 WIFI repeater 1.0 devices, an attacker can log into telnet (which is open by default) with default credentials as root (username:"root" password:"root") and can: 1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Wifi Repeater Firmware
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

On BE126 WIFI repeater 1.0 devices, an attacker can log into telnet (which is open by default) with default credentials as root (username:"root" password:"root"). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Wifi Repeater Firmware
NVD
EPSS 22% CVSS 7.5
HIGH POC THREAT Act Now

There is LFD (local file disclosure) on BE126 WIFI repeater 1.0 devices that allows attackers to read the entire filesystem on the device via a crafted getpage parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 21.8%.

Information Disclosure Wifi Repeater Firmware
NVD Exploit-DB
EPSS 4% CVSS 8.8
HIGH POC This Week

T&W WIFI Repeater BE126 allows remote authenticated users to execute arbitrary code via shell metacharacters in the user parameter to cgi-bin/webupg. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Wifi Repeater Firmware
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy