← Back

En7528 Firmware

en7528_firmware

Vendor: Mediatek • 6 CVEs

CVEs (6)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-31578
1Mediatek
2En7528 Firmware
En7580 Firmware
Nov 21, 2024
Feb 6, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In Boa, there is a possible escalation of privilege due to a stack buffer overflow. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interact...Show more
In Boa, there is a possible escalation of privilege due to a stack buffer overflow. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.Show less
CVE-2021-31577
1Mediatek
2En7528 Firmware
En7580 Firmware
Nov 21, 2024
Feb 6, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In Boa, there is a possible escalation of privilege due to a missing permission check. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User inter...Show more
In Boa, there is a possible escalation of privilege due to a missing permission check. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.Show less
CVE-2021-31576
1Mediatek
2En7528 Firmware
En7580 Firmware
Nov 21, 2024
Feb 6, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
In Boa, there is a possible information disclosure due to a missing permission check. This could lead to remote information disclosure to a proximal attacker with no additional execution privileges needed. User interacti...Show more
In Boa, there is a possible information disclosure due to a missing permission check. This could lead to remote information disclosure to a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.Show less
CVE-2021-31575
1Mediatek
2En7528 Firmware
En7580 Firmware
Mar 26, 2025
Feb 6, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User i...Show more
In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210009; Issue ID: OSBNB00123234.Show less
CVE-2021-31574
1Mediatek
2En7528 Firmware
En7580 Firmware
Mar 26, 2025
Feb 6, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User i...Show more
In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210009; Issue ID: OSBNB00123234.Show less
CVE-2021-31573
1Mediatek
2En7528 Firmware
En7580 Firmware
Mar 26, 2025
Feb 6, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User i...Show more
In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210009; Issue ID: OSBNB00123234.Show less