Vulnerabilities > IP COM > EW9 Firmware > 15.11.0.14

DATE CVE VULNERABILITY TITLE RISK
2022-10-27 CVE-2022-43364 Unspecified vulnerability in Ip-Com EW9 Firmware 15.11.0.14
An access control issue in the password reset page of IP-COM EW9 V15.11.0.14(9732) allows unauthenticated attackers to arbitrarily change the admin password.
network
low complexity
ip-com
7.5
7.5
2022-10-27 CVE-2022-43365 Classic Buffer Overflow vulnerability in Ip-Com EW9 Firmware 15.11.0.14
IP-COM EW9 V15.11.0.14(9732) was discovered to contain a buffer overflow in the formSetDebugCfg function.
network
low complexity
ip-com CWE-120
7.5
7.5
2022-10-27 CVE-2022-43366 Unspecified vulnerability in Ip-Com EW9 Firmware 15.11.0.14
IP-COM EW9 V15.11.0.14(9732) allows unauthenticated attackers to access sensitive information via the checkLoginUser, ate, telnet, version, setDebugCfg, and boot interfaces.
network
low complexity
ip-com
7.5
7.5
2022-10-27 CVE-2022-43367 Command Injection vulnerability in Ip-Com EW9 Firmware 15.11.0.14
IP-COM EW9 V15.11.0.14(9732) was discovered to contain a command injection vulnerability in the formSetDebugCfg function.
network
low complexity
ip-com CWE-77
critical
 9.8
9.8