Cx2l CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (8 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-31531	1 Motorola	2 Cx2l, Cx2l Firmware	2025-01-27	8.8 High
Motorola CX2L Router 1.0.1 was discovered to contain a command injection vulnerability via the tomography_ping_number parameter.
CVE-2023-31530	1 Motorola	2 Cx2l, Cx2l Firmware	2025-01-27	8.8 High
Motorola CX2L Router 1.0.1 was discovered to contain a command injection vulnerability via the smartqos_priority_devices parameter.
CVE-2023-31529	1 Motorola	2 Cx2l, Cx2l Firmware	2025-01-27	8.8 High
Motorola CX2L Router 1.0.1 was discovered to contain a command injection vulnerability via the system_time_timezone parameter.
CVE-2023-31528	1 Motorola	2 Cx2l, Cx2l Firmware	2025-01-27	8.8 High
Motorola CX2L Router 1.0.1 was discovered to contain a command injection vulnerability via the staticroute_list parameter.
CVE-2024-25360	1 Motorola	2 Cx2l, Cx2l Firmware	2024-11-21	5.3 Medium
A hidden interface in Motorola CX2L Router firmware v1.0.1 leaks information regarding the SystemWizardStatus component via sending a crafted request to device_web_ip.
CVE-2019-15513	2 Motorola, Openwrt	5 C1 Mwr03, C1 Mwr03 Firmware, Cx2l Mwr04l and 2 more	2024-11-21	N/A
An issue was discovered in OpenWrt libuci (aka Library for the Unified Configuration Interface) before 15.05.1 as used on Motorola CX2L MWR04L 1.01 and C1 MWR03 1.01 devices. /tmp/.uci/network locking is mishandled after reception of a long SetWanSettings command, leading to a device hang.
CVE-2019-13129	1 Motorola	2 Cx2l Mwr04l, Cx2l Mwr04l Firmware	2024-11-21	N/A
On the Motorola router CX2L MWR04L 1.01, there is a stack consumption (infinite recursion) issue in scopd via TCP port 8010 and UDP port 8080. It is caused by snprintf and inappropriate length handling.
CVE-2024-45880	1 Motorola	1 Cx2l Firmware	2024-10-10	8 High
A command injection vulnerability exists in Motorola CX2L router v1.0.2 and below. The vulnerability is present in the SetStationSettings function. The system directly invokes the system function to execute commands for setting parameters such as MAC address without proper input filtering. This allows malicious users to inject and execute arbitrary commands.

Page 1 of 1.