Vulnerabilities > Lantronix > Premierwave 2050 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-12-22 CVE-2021-21894 Path Traversal vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0
A directory traversal vulnerability exists in the Web Manager FsTFtp functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU).
network
low complexity
lantronix CWE-22
critical
 9.1
9.1
2021-12-22 CVE-2021-21892 Out-of-bounds Write vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0
A stack-based buffer overflow vulnerability exists in the Web Manager FsUnmount functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU).
network
low complexity
lantronix CWE-787
critical
 9.9
9.9
2021-12-22 CVE-2021-21891 Out-of-bounds Write vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0
A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU).
network
low complexity
lantronix CWE-787
critical
 9.1
9.1
2021-12-22 CVE-2021-21890 Out-of-bounds Write vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0
A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU).
network
low complexity
lantronix CWE-787
critical
 9.1
9.1
2021-12-22 CVE-2021-21889 Out-of-bounds Write vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0
A stack-based buffer overflow vulnerability exists in the Web Manager Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU).
network
low complexity
lantronix CWE-787
critical
 9.9
9.9
2021-12-22 CVE-2021-21888 OS Command Injection vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0
An OS command injection vulnerability exists in the Web Manager SslGenerateCertificate functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU).
network
low complexity
lantronix CWE-78
critical
 9.1
9.1
2021-12-22 CVE-2021-21887 Out-of-bounds Write vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0
A stack-based buffer overflow vulnerability exists in the Web Manager SslGenerateCSR functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU).
network
low complexity
lantronix CWE-787
critical
 9.1
9.1
2021-12-22 CVE-2021-21884 OS Command Injection vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0
An OS command injection vulnerability exists in the Web Manager SslGenerateCSR functionality of Lantronix PremierWave 2050 8.9.0.0R4.
network
low complexity
lantronix CWE-78
critical
 9.1
9.1
2021-12-22 CVE-2021-21883 OS Command Injection vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0
An OS command injection vulnerability exists in the Web Manager Diagnostics: Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4.
network
low complexity
lantronix CWE-78
critical
 9.9
9.9
2021-12-22 CVE-2021-21881 OS Command Injection vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0
An OS command injection vulnerability exists in the Web Manager Wireless Network Scanner functionality of Lantronix PremierWave 2050 8.9.0.0R4.
network
low complexity
lantronix CWE-78
critical
 9.9
9.9