Vulnerabilities > Corega
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-06-25 | CVE-2016-4823 | Unspecified vulnerability in Corega Cg-Wlbaragm Firmware Corega CG-WLBARAGM devices allow remote attackers to cause a denial of service (reboot) via unspecified vectors. | 7.5 |
| 2016-06-25 | CVE-2016-4822 | Command Injection vulnerability in Corega Cg-Wlbargl Firmware Corega CG-WLBARGL devices allow remote authenticated users to execute arbitrary commands via unspecified vectors. | 8.0 |
| 2016-03-03 | CVE-2016-1158 | Cross-Site Request Forgery (CSRF) vulnerability in Corega Cg-Wlbargmh Firmware and Cg-Wlbargnl Firmware Cross-site request forgery (CSRF) vulnerability on Corega CG-WLBARGMH and CG-WLBARGNL devices allows remote attackers to hijack the authentication of administrators for requests that perform administrative functions. | 8.8 |
| 2015-12-30 | CVE-2015-7794 | Improper Input Validation vulnerability in Corega Cg-Wlncm4G Firmware Corega CG-WLNCM4G devices provide an open DNS resolver, which allows remote attackers to cause a denial of service (traffic amplification) via crafted queries. | 5.8 |
| 2015-12-30 | CVE-2015-7793 | Code vulnerability in Corega Cg-Wlbaragm Firmware Corega CG-WLBARAGM devices provide an open proxy service, which allows remote attackers to trigger outbound network traffic via unspecified vectors. | 5.8 |
| 2015-12-30 | CVE-2015-7792 | Permissions, Privileges, and Access Controls vulnerability in Corega Cg-Wlbargs Firmware Corega CG-WLBARGS devices allow remote attackers to perform administrative operations via unspecified vectors. | 9.8 |