Skip to main content

Wn G300R3 Firmware

5 CVEs product

Monthly

CVE-2018-0512 MEDIUM This Month

Devices with IP address setting tool "MagicalFinder" provided by I-O DATA DEVICE, INC. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Hdl Xr Firmware Hdl Xrw Firmware Hdl Xr2U Firmware Hdl Xr2Uw Firmware +41
NVD
CVSS 3.0
6.8
EPSS
0.7%
CVE-2017-2283 HIGH This Week

WN-G300R3 firmware version 1.0.2 and earlier uses hardcoded credentials which may allow an attacker that can access the device to execute arbitrary code on the device. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

RCE Authentication Bypass Wn G300R3 Firmware
NVD
CVSS 3.0
8.0
EPSS
0.2%
CVE-2017-2142 CRITICAL Act Now

Buffer overflow in WN-G300R3 firmware Ver.1.03 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Wn G300R3 Firmware
NVD
CVSS 3.0
9.8
EPSS
2.8%
CVE-2017-2141 HIGH This Week

WN-G300R3 firmware 1.03 and earlier allows attackers with administrator rights to execute arbitrary OS commands via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Wn G300R3 Firmware
NVD
CVSS 3.0
7.2
EPSS
0.5%
CVE-2016-1207 MEDIUM This Month

Cross-site scripting (XSS) vulnerability on I-O DATA DEVICE WN-G300R devices with firmware 1.12 and earlier, WN-G300R2 devices with firmware 1.12 and earlier, and WN-G300R3 devices with firmware 1.01. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Wn G300R2 Firmware Wn G300R3 Firmware Wn G300R Firmware
NVD
CVSS 3.0
5.4
EPSS
0.2%
EPSS 1% CVSS 6.8
MEDIUM This Month

Devices with IP address setting tool "MagicalFinder" provided by I-O DATA DEVICE, INC. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Hdl Xr Firmware Hdl Xrw Firmware +43
NVD
EPSS 0% CVSS 8.0
HIGH This Week

WN-G300R3 firmware version 1.0.2 and earlier uses hardcoded credentials which may allow an attacker that can access the device to execute arbitrary code on the device. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

RCE Authentication Bypass Wn G300R3 Firmware
NVD
EPSS 3% CVSS 9.8
CRITICAL Act Now

Buffer overflow in WN-G300R3 firmware Ver.1.03 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Wn G300R3 Firmware
NVD
EPSS 0% CVSS 7.2
HIGH This Week

WN-G300R3 firmware 1.03 and earlier allows attackers with administrator rights to execute arbitrary OS commands via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Wn G300R3 Firmware
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

Cross-site scripting (XSS) vulnerability on I-O DATA DEVICE WN-G300R devices with firmware 1.12 and earlier, WN-G300R2 devices with firmware 1.12 and earlier, and WN-G300R3 devices with firmware 1.01. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Wn G300R2 Firmware Wn G300R3 Firmware +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy