Vulnerabilities > Openwrt > Openwrt > 19.07.3

DATE CVE VULNERABILITY TITLE RISK
2022-09-19 CVE-2022-38333 Out-of-bounds Read vulnerability in Openwrt
Openwrt before v21.02.3 and Openwrt v22.03.0-rc6 were discovered to contain two skip loops in the function header_value().
network
low complexity
openwrt CWE-125
7.5
7.5
2021-08-02 CVE-2021-32019 Cross-site Scripting vulnerability in Openwrt
There is missing input validation of host names displayed in OpenWrt before 19.07.8.
network
low complexity
openwrt CWE-79
6.1
6.1
2021-02-07 CVE-2021-22161 Infinite Loop vulnerability in Openwrt
In OpenWrt 19.07.x before 19.07.7, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router.
low complexity
openwrt CWE-835
6.5
6.5
2020-11-19 CVE-2020-28951 Use After Free vulnerability in Openwrt
libuci in OpenWrt before 18.06.9 and 19.x before 19.07.5 may encounter a use after free when using malicious package names.
network
low complexity
openwrt CWE-416
critical
 9.8
9.8