Filtered by vendor Airties Subscriptions
Total 15 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-38789 1 Airties 6 Air 4920, Air 4920 Firmware, Air 4921 and 3 more 2024-11-21 9.1 Critical
An issue was discovered in Airties Smart Wi-Fi before 2020-08-04. It allows attackers to change the main/guest SSID and the PSK to arbitrary values, and map the LAN, because of Insecure Direct Object Reference.
CVE-2019-6967 1 Airties 2 Air 5341, Air 5341 Firmware 2024-11-21 N/A
AirTies Air5341 1.0.0.12 devices allow cgi-bin/login CSRF.
CVE-2018-8738 1 Airties 4 5444, 5444 Firmware, 5444tt and 1 more 2024-11-21 N/A
Airties 5444 1.0.0.18 and 5444TT 1.0.0.18 devices allow XSS.
CVE-2018-17594 1 Airties 2 Air 5443v2, Air 5443v2 Firmware 2024-11-21 N/A
AirTies Air 5443v2 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
CVE-2018-17593 1 Airties 2 Air 5453, Air 5453 Firmware 2024-11-21 N/A
AirTies Air 5453 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
CVE-2018-17591 1 Airties 2 Air 5343v2, Air 5343v2 Firmware 2024-11-21 N/A
AirTies Air 5343v2 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
CVE-2018-17590 1 Airties 2 Air 5442, Air 5442 Firmware 2024-11-21 N/A
AirTies Air 5442 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
CVE-2018-17589 1 Airties 2 Air 5650, Air 5650 Firmware 2024-11-21 N/A
AirTies Air 5650 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
CVE-2018-17588 1 Airties 2 Air 5021, Air 5021 Firmware 2024-11-21 N/A
AirTies Air 5021 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
CVE-2018-17587 1 Airties 2 Air 5750, Air 5750 Firmware 2024-11-21 N/A
AirTies Air 5750 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
CVE-2015-4679 1 Airties 2 Rt-210, Rt-210 Firmware 2024-11-21 N/A
Multiple cross-site scripting (XSS) vulnerabilities in the web interface in Airties RT-210 allow remote attackers to inject arbitrary web script or HTML via the (1) ddns_domainame or (2) ddns_account parameter to ddns.stm.
CVE-2015-2797 1 Airties 13 Air 5021, Air 5341, Air 5342 and 10 more 2024-11-21 N/A
Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execute arbitrary code via a long string in the redirect parameter to cgi-bin/login.
CVE-2014-100032 1 Airties 1 Air 6372 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in top.html in the Airties Air 6372 modem allows remote attackers to inject arbitrary web script or HTML via the productboardtype parameter.
CVE-2012-0902 1 Airties 1 Air 4450 2024-11-21 N/A
AirTies Air 4450 1.1.2.18 allows remote attackers to cause a denial of service (reboot) via a direct request to cgi-bin/loader.
CVE-2024-9477 1 Airties 2 Air4443, Air4443 Firmware 2024-11-15 6.1 Medium
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AirTies Air4443 Firmware allows Cross-Site Scripting (XSS).This issue affects Air4443 Firmware: through 14102024. NOTE: The vendor was contacted and it was learned that the product classified as End-of-Life and End-of-Support.