Lantronix Premierwave 2050 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Lantronix Premierwave 2050 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (23)
CVE-2021-21892 — CVSS 9.9 (critical): A stack-based buffer overflow vulnerability exists in the Web Manager FsUnmount functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in…
CVE-2021-21889 — CVSS 9.9 (critical): A stack-based buffer overflow vulnerability exists in the Web Manager Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU)…
CVE-2021-21881 — CVSS 9.9 (critical): An OS command injection vulnerability exists in the Web Manager Wireless Network Scanner functionality of Lantronix PremierWave 2050…
CVE-2021-21872 — CVSS 9.9 (critical): An OS command injection vulnerability exists in the Web Manager Diagnostics: Traceroute functionality of Lantronix PremierWave 2050…
CVE-2021-21883 — CVSS 9.9 (critical): An OS command injection vulnerability exists in the Web Manager Diagnostics: Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4. A…
CVE-2021-21877 — CVSS 9.1 (critical): Specially-crafted HTTP requests can lead to arbitrary command execution in “GET” requests. An attacker can make authenticated HTTP…
CVE-2021-21884 — CVSS 9.1 (critical): An OS command injection vulnerability exists in the Web Manager SslGenerateCSR functionality of Lantronix PremierWave 2050 8.9.0.0R4. A…
CVE-2021-21873 — CVSS 9.1 (critical): A specially-crafted HTTP request can lead to arbitrary command execution in RSA keypasswd parameter. An attacker can make an authenticated…
CVE-2021-21874 — CVSS 9.1 (critical): A specially-crafted HTTP request can lead to arbitrary command execution in DSA keypasswd parameter. An attacker can make an authenticated…
CVE-2021-21875 — CVSS 9.1 (critical): A specially-crafted HTTP request can lead to arbitrary command execution in EC keypasswd parameter. An attacker can make an authenticated…
CVE-2021-21876 — CVSS 9.1 (critical): Specially-crafted HTTP requests can lead to arbitrary command execution in PUT requests. An attacker can make authenticated HTTP requests…
CVE-2021-21887 — CVSS 9.1 (critical): A stack-based buffer overflow vulnerability exists in the Web Manager SslGenerateCSR functionality of Lantronix PremierWave 2050 8.9.0.0R4…
CVE-2021-21888 — CVSS 9.1 (critical): An OS command injection vulnerability exists in the Web Manager SslGenerateCertificate functionality of Lantronix PremierWave 2050…
CVE-2021-21890 — CVSS 9.1 (critical): A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4…
CVE-2021-21891 — CVSS 9.1 (critical): A stack-based buffer overflow vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4…
CVE-2021-21894 — CVSS 9.1 (critical): A directory traversal vulnerability exists in the Web Manager FsTFtp functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A…
CVE-2021-21882 — CVSS 8.8 (high): An OS command injection vulnerability exists in the Web Manager FsUnmount functionality of Lantronix PremierWave 2050 8.9.0.0R4. A…
CVE-2021-21885 — CVSS 7.2 (high): A directory traversal vulnerability exists in the Web Manager FsMove functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially…
CVE-2021-21880 — CVSS 7.2 (high): A directory traversal vulnerability exists in the Web Manager FsCopyFile functionality of Lantronix PremierWave 2050 8.9.0.0R4. A…
CVE-2021-21895 — CVSS 7.2 (high): A directory traversal vulnerability exists in the Web Manager FsTFtp functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A…
CVE-2021-21896 — CVSS 6.5 (medium): A directory traversal vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in…
CVE-2021-21878 — CVSS 4.9 (medium): A local file inclusion vulnerability exists in the Web Manager Applications and FsBrowse functionality of Lantronix PremierWave 2050…
CVE-2021-21886 — CVSS 4.3 (medium): A directory traversal vulnerability exists in the Web Manager FSBrowsePage functionality of Lantronix PremierWave 2050 8.9.0.0R4. A…