Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2024-09-18 CVE-2024-46590 Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6
Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the ssidencrypt%d parameter at v2x00.cgi.
network
low complexity
draytek CWE-120
7.5
7.5
2024-09-18 CVE-2024-46591 Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6
Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sDnsPro parameter at v2x00.cgi.
network
low complexity
draytek CWE-120
7.5
7.5
2024-09-18 CVE-2024-46592 Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6
Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the ssidencrypt_5g%d parameter at v2x00.cgi.
network
low complexity
draytek CWE-120
7.5
7.5
2024-09-18 CVE-2024-46593 Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6
Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the trapcomm parameter at cgiswm.cgi.
network
low complexity
draytek CWE-120
7.5
7.5
2024-09-18 CVE-2024-46594 Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6
Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the saveVPNProfile parameter at v2x00.cgi.
network
low complexity
draytek CWE-120
7.5
7.5
2024-09-18 CVE-2024-46595 Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6
Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the saveitem parameter at lan2lan.cgi.
network
low complexity
draytek CWE-120
7.5
7.5
2024-09-18 CVE-2024-46596 Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6
Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sAct parameter at v2x00.cgi.
network
low complexity
draytek CWE-120
7.5
7.5
2024-09-18 CVE-2024-46597 Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6
Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sPubKey parameter at dialin.cgi.
network
low complexity
draytek CWE-120
7.5
7.5
2024-09-18 CVE-2024-46598 Classic Buffer Overflow vulnerability in Draytek Vigor3910 Firmware 4.3.2.6
Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the iprofileidx parameter at dialin.cgi.
network
low complexity
draytek CWE-120
7.5
7.5
2024-09-18 CVE-2024-5958 SQL Injection vulnerability in Elizsoftware Panel
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eliz Software Panel allows Command Line Execution through SQL Injection.This issue affects Panel: before v2.3.24.
network
low complexity
elizsoftware CWE-89
8.8
8.8