VYPR

JetWave 4200 Series

by Korenix

CVEs (3)

  • CVE-2023-23294Feb 23, 2023
    risk 0.00cvss epss 0.03

    Korenix JetWave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0 are vulnerable to Command Injection. An attacker can modify the file_name parameter to execute commands as root.

  • CVE-2023-23295Feb 23, 2023
    risk 0.00cvss epss 0.04

    Korenix Jetwave 4200 Series 1.3.0 and JetWave 3000 Series 1.6.0 are vulnerable to Command Injection via /goform/formSysCmd. An attacker an modify the sysCmd parameter in order to execute commands as root.

  • CVE-2023-23296Feb 23, 2023
    risk 0.00cvss epss 0.01

    Korenix JetWave 4200 Series 1.3.0 and JetWave 3200 Series 1.6.0 are vulnerable to Denial of Service via /goform/formDefault.