Vulnerabilities > Mediatek > En7580 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-02-06 CVE-2021-31573 Command Injection vulnerability in Mediatek En7528 Firmware and En7580 Firmware
In Config Manager, there is a possible command injection due to improper input validation.
network
low complexity
mediatek CWE-77
critical
 9.8
9.8
2023-02-06 CVE-2021-31574 Command Injection vulnerability in Mediatek En7528 Firmware and En7580 Firmware
In Config Manager, there is a possible command injection due to improper input validation.
network
low complexity
mediatek CWE-77
critical
 9.8
9.8
2023-02-06 CVE-2021-31575 Command Injection vulnerability in Mediatek En7528 Firmware and En7580 Firmware
In Config Manager, there is a possible command injection due to improper input validation.
network
low complexity
mediatek CWE-77
critical
 9.8
9.8
2023-02-06 CVE-2021-31576 Missing Authorization vulnerability in Mediatek En7528 Firmware and En7580 Firmware
In Boa, there is a possible information disclosure due to a missing permission check.
network
low complexity
mediatek CWE-862
7.5
7.5
2023-02-06 CVE-2021-31577 Missing Authorization vulnerability in Mediatek En7528 Firmware and En7580 Firmware
In Boa, there is a possible escalation of privilege due to a missing permission check.
network
low complexity
mediatek CWE-862
critical
 9.8
9.8
2023-02-06 CVE-2021-31578 Out-of-bounds Write vulnerability in Mediatek En7528 Firmware and En7580 Firmware
In Boa, there is a possible escalation of privilege due to a stack buffer overflow.
network
low complexity
mediatek CWE-787
critical
 9.8
9.8