Vulnerabilities > Netcommwireless

DATE CVE VULNERABILITY TITLE RISK
2023-01-11 CVE-2022-4873 Out-of-bounds Write vulnerability in Netcommwireless Nf20 Firmware, Nf20Mesh Firmware and Nl1902 Firmware
On Netcomm router models NF20MESH, NF20, and NL1902 a stack based buffer overflow affects the sessionKey parameter.
network
low complexity
netcommwireless CWE-787
critical
 9.8
9.8
2023-01-11 CVE-2022-4874 Improper Authentication vulnerability in Netcommwireless Nf20 Firmware, Nf20Mesh Firmware and Nl1902 Firmware
Authentication bypass in Netcomm router models NF20MESH, NF20, and NL1902 allows an unauthenticated user to access content.
network
low complexity
netcommwireless CWE-287
7.5
7.5
2018-08-10 CVE-2018-14785 Information Exposure vulnerability in Netcommwireless Nwl-25 Firmware 2.0.29.11
NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior.
network
low complexity
netcommwireless CWE-200
7.5
7.5
2018-08-10 CVE-2018-14784 Cross-site Scripting vulnerability in Netcommwireless Nwl-25 Firmware 2.0.29.11
NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior.
network
low complexity
netcommwireless CWE-79
6.1
6.1
2018-08-10 CVE-2018-14783 Cross-Site Request Forgery (CSRF) vulnerability in Netcommwireless Nwl-25 Firmware 2.0.29.11
NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior.
network
low complexity
netcommwireless CWE-352
8.8
8.8
2018-08-10 CVE-2018-14782 Improper Authentication vulnerability in Netcommwireless Nwl-25 Firmware 2.0.29.11
NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior.
network
low complexity
netcommwireless CWE-287
7.5
7.5
2017-02-09 CVE-2015-6024 Command Injection vulnerability in Netcommwireless Hspa 3G10Wve Firmware 3G10Wvel101S306Etsc01R03
ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101-S306ETS-C01_R05 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the DIA_IPADDRESS parameter.
network
low complexity
netcommwireless CWE-77
critical
 9.8
9.8
2017-02-09 CVE-2015-6023 Improper Access Control vulnerability in Netcommwireless Hspa 3G10Wve Firmware 3G10Wvel101S306Etsc01R03
ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101-S306ETS-C01_R05 allows remote attackers to bypass intended access restrictions via a direct request.
network
low complexity
netcommwireless CWE-284
7.3
7.3