Filtered by vendor Wayos Subscriptions
Total 5 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-37794 1 Wayos 2 Fbm-291w, Fbm-291w Firmware 2024-11-21 9.8 Critical
WAYOS FBM-291W 19.09.11V was discovered to contain a command injection vulnerability via the component /upgrade_filter.asp.
CVE-2023-37793 1 Wayos 2 Fbm-291w, Fbm-291w Firmware 2024-11-21 9.8 Critical
WAYOS FBM-291W 19.09.11V was discovered to contain a buffer overflow via the component /upgrade_filter.asp.
CVE-2022-41489 1 Wayos 12 Lq-04, Lq-04 Firmware, Lq-05 and 9 more 2024-11-21 8.1 High
WAYOS LQ_09 22.03.17V was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to send crafted requests to the server from the affected device. This vulnerability is exploitable due to a lack of authentication in the component Usb_upload.htm.
CVE-2024-44414 1 Wayos 1 Fbm 292w Firmware 2024-10-15 8.8 High
A vulnerability was discovered in FBM_292W-21.03.10V, which has been classified as critical. This issue affects the sub_4901E0 function in the msp_info.htm file. Manipulation of the path parameter can lead to command injection.
CVE-2024-44383 1 Wayos 2 Fbm-291w, Fbm-291w Firmware 2024-09-05 8 High
WAYOS FBM-291W v19.09.11 is vulnerable to Command Execution via msp_info_htm.