Latest chinamobile an lianbao wf-1 firmware Vulnerabilities

CVE-2021-33965
China Mobile An Lianbao WF-1 V1.0.1 router provides a web interface /api/ZRMesh/set_ZRMesh which receives parameters by POST request, and the parameter mesh_enable and mesh_device have a command injec...
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1
CVE-2021-33964
China Mobile An Lianbao WF-1 V1.0.1 router provides a web interface /api/ZRRuleFilter/set_firewall_level which receives parameters by POST request, and the parameter firewall_level has a command injec...
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1
CVE-2021-33963
China Mobile An Lianbao WF-1 v1.0.1 router web interface through /api/ZRMacClone/mac_addr_clone receives parameters by POST request, and the parameter macType has a command injection vulnerability. An...
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1
CVE-2021-30234
The api/ZRIGMP/set_MLD_PROXY interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the MLD_PROXY_WAN_CONNECT paramete...
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1
CVE-2021-30231
The api/zrDm/set_ZRElink interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the bssaddr, abiaddr, devtoken, devid,...
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1
CVE-2021-30233
The api/ZRIptv/setIptvInfo interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the iptv_vlan parameter.
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1
CVE-2021-30232
The api/ZRIGMP/set_IGMP_PROXY interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the IGMP_PROXY_WAN_CONNECT parame...
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1
CVE-2021-30230
The api/ZRFirmware/set_time_zone interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the zonename parameter.
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1
CVE-2021-30229
The api/zrDm/set_zrDm interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the dm_enable, AppKey, or Pwd parameter.
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1
CVE-2021-25812
Command injection vulnerability in China Mobile An Lianbao WF-1 1.01 via the 'ip' parameter with a POST request to /api/ZRQos/set_online_client.
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1
CVE-2021-30228
The api/ZRAndlink/set_ZRAndlink interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the iandlink_proc_enable parame...
Chinamobile An Lianbao Wf-1 Firmware=1.0.1
Chinamobile An Lianbao Wf-1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203