VYPR

Vendor CVEs

Endian

All CVEs

44 total · sorted by risk
  • CVE-2026-34797HigApr 2, 2026
    risk 0.57cvss 8.8epss 0.01

    Endian Firewall version 3.3.25 and prior allow authenticated users to execute arbitrary OS commands via the DATE parameter to /cgi-bin/logs_smtp.cgi. The DATE parameter value is used to construct a file path that is passed to a Perl open() call, which allows command injection…

  • CVE-2026-34796HigApr 2, 2026
    risk 0.57cvss 8.8epss 0.01

    Endian Firewall version 3.3.25 and prior allow authenticated users to execute arbitrary OS commands via the DATE parameter to /cgi-bin/logs_openvpn.cgi. The DATE parameter value is used to construct a file path that is passed to a Perl open() call, which allows command injection…

  • CVE-2026-34795HigApr 2, 2026
    risk 0.57cvss 8.8epss 0.01

    Endian Firewall version 3.3.25 and prior allow authenticated users to execute arbitrary OS commands via the DATE parameter to /cgi-bin/logs_log.cgi. The DATE parameter value is used to construct a file path that is passed to a Perl open() call, which allows command injection due…

  • CVE-2026-34794HigApr 2, 2026
    risk 0.57cvss 8.8epss 0.01

    Endian Firewall version 3.3.25 and prior allow authenticated users to execute arbitrary OS commands via the DATE parameter to /cgi-bin/logs_ids.cgi. The DATE parameter value is used to construct a file path that is passed to a Perl open() call, which allows command injection due…

  • CVE-2026-34793HigApr 2, 2026
    risk 0.57cvss 8.8epss 0.01

    Endian Firewall version 3.3.25 and prior allow authenticated users to execute arbitrary OS commands via the DATE parameter to /cgi-bin/logs_firewall.cgi. The DATE parameter value is used to construct a file path that is passed to a Perl open() call, which allows command…

  • CVE-2026-34792HigApr 2, 2026
    risk 0.57cvss 8.8epss 0.01

    Endian Firewall version 3.3.25 and prior allow authenticated users to execute arbitrary OS commands via the DATE parameter to /cgi-bin/logs_clamav.cgi. The DATE parameter value is used to construct a file path that is passed to a Perl open() call, which allows command injection…

  • CVE-2026-34791HigApr 2, 2026
    risk 0.57cvss 8.8epss 0.01

    Endian Firewall version 3.3.25 and prior allow authenticated users to execute arbitrary OS commands via the DATE parameter to /cgi-bin/logs_proxy.cgi. The DATE parameter value is used to construct a file path that is passed to a Perl open() call, which allows command injection…

  • CVE-2026-34790HigApr 2, 2026
    risk 0.46cvss 7.1epss 0.01

    Endian Firewall version 3.3.25 and prior allow authenticated users to delete arbitrary files via directory traversal in the remove ARCHIVE parameter to /cgi-bin/backup.cgi. The remove ARCHIVE parameter value is used to construct a file path without sanitization of directory…

  • CVE-2026-34823MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/password/web/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34822MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the new_cert_name parameter to /manage/ca/certificate/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34821MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/vpnauthentication/user/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34820MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/ipsec/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34819MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the REMARK parameter to /cgi-bin/openvpnclient.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34818MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dnsmasq/localdomains/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34817MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the ADDRESS BCC parameter to /cgi-bin/smtprouting.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34816MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the domain parameter to /manage/smtpscan/domainrouting/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34815MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the DOMAIN parameter to /cgi-bin/smtpdomains.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34814MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the group parameter to /cgi-bin/proxygroup.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34813MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the user parameter to /cgi-bin/proxyuser.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34812MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the mimetypes parameter to /cgi-bin/proxypolicy.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34811MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/xtaccess.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34810MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/vpnfw.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34809MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/zonefw.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34808MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/outgoingfw.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34807MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/incoming.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34806MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/snat.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34805MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/dnat.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34804MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the dscp parameter to /manage/qos/rules/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34803MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the name parameter to /manage/qos/classes/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34802MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark user ham spam parameter to /cgi-bin/salearn.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34801MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dhcp/fixed_leases/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34800MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the NAME parameter to /cgi-bin/uplinkeditor.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34799MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dnsmasq/hosts/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2026-34798MedApr 2, 2026
    risk 0.42cvss 6.4epss 0.00

    Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/routing.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.

  • CVE-2020-12271KEVApr 27, 2020
    risk 0.25cvss epss 0.43

    A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall devices, as exploited in the wild in April 2020. This affected devices configured with either the administration (HTTPS) service or the User Portal exposed on the WAN zone.…

  • CVE-2020-15069KEVJun 29, 2020
    risk 0.19cvss epss 0.11

    Sophos XG Firewall 17.x through v17.5 MR12 allows a Buffer Overflow and remote code execution via the HTTP/S Bookmarks feature for clientless access. Hotfix HF062020.1 was published for all firewalls running v17.x.

  • CVE-2015-5082Sep 28, 2015
    risk 0.09cvss epss 0.70

    Endian Firewall before 3.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) NEW_PASSWORD_1 or (2) NEW_PASSWORD_2 parameter to cgi-bin/chpasswd.cgi.

  • CVE-2012-4923Sep 15, 2012
    risk 0.03cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in Endian Firewall 2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) createrule parameter to dnat.cgi, (2) addrule parameter to dansguardian.cgi, or (3) PATH_INFO to openvpn_users.cgi.

  • CVE-2024-13973Jul 21, 2025
    risk 0.00cvss epss 0.08

    A post-auth SQL injection vulnerability in WebAdmin of Sophos Firewall versions older than 21.0 MR1 (21.0.1) can potentially lead to administrators achieving arbitrary code execution.

  • CVE-2022-45963Dec 27, 2022
    risk 0.00cvss epss 0.01

    h3c firewall <= 3.10 ESS6703 has a privilege bypass vulnerability.

  • CVE-2021-28130Sep 24, 2021
    risk 0.00cvss epss 0.00

    Dr.Web Firewall 12.5.2.4160 on Windows incorrectly restricts applications signed by Dr.Web. A DLL for a custom payload within a legitimate binary (e.g., frwl_svc.exe) bypasses firewall filters.

  • CVE-2020-15504Jul 10, 2020
    risk 0.00cvss epss 0.02

    A SQL injection vulnerability in the user and admin web interfaces of Sophos XG Firewall v18.0 MR1 and older potentially allows an attacker to run arbitrary code remotely. The fix is built into the re-release of XG Firewall v18 MR-1 (named MR-1-Build396) and the v17.5 MR13…

  • CVE-2020-11503Jun 18, 2020
    risk 0.00cvss epss 0.01

    A heap-based buffer overflow in the awarrensmtp component of Sophos XG Firewall v17.5 MR11 and older potentially allows an attacker to run arbitrary code remotely.

  • CVE-2008-0494Jan 30, 2008
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in vpnum/userslist.php in Endian Firewall 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the psearch parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third…