Vulnerabilities (CVE)

Filtered by vendor Lantronix Subscribe

Filtered by product Premierwave 2050 Firmware

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-21878	1 Lantronix	2 Premierwave 2050, Premierwave 2050 Firmware	2022-04-28	6.8 MEDIUM	4.9 MEDIUM
A local file inclusion vulnerability exists in the Web Manager Applications and FsBrowse functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially-crafted series of HTTP requests can lead to local file inclusion. An attacker can make a series of authenticated HTTP requests to trigger this vulnerability.
CVE-2021-21886	1 Lantronix	2 Premierwave 2050, Premierwave 2050 Firmware	2022-04-28	4.0 MEDIUM	4.3 MEDIUM
A directory traversal vulnerability exists in the Web Manager FSBrowsePage functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specially crafted HTTP request can lead to information disclosure. An attacker can make an authenticated HTTP request to trigger this vulnerability.
CVE-2021-21896	1 Lantronix	2 Premierwave 2050, Premierwave 2050 Firmware	2022-04-28	5.5 MEDIUM	6.5 MEDIUM
A directory traversal vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). A specially crafted HTTP request can lead to arbitrary file deletion. An attacker can make an authenticated HTTP request to trigger this vulnerability.