En7580 Firmware

en7580_firmware

Vendor: Mediatek • 6 CVEs

CVEs (6)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-31578 1Mediatek 2En7528 Firmware En7580 Firmware Nov 21, 2024 Feb 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Boa, there is a possible escalation of privilege due to a stack buffer overflow. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interact...Show more In Boa, there is a possible escalation of privilege due to a stack buffer overflow. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.Show less
CVE-2021-31577 1Mediatek 2En7528 Firmware En7580 Firmware Nov 21, 2024 Feb 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Boa, there is a possible escalation of privilege due to a missing permission check. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User inter...Show more In Boa, there is a possible escalation of privilege due to a missing permission check. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.Show less
CVE-2021-31576 1Mediatek 2En7528 Firmware En7580 Firmware Nov 21, 2024 Feb 6, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 In Boa, there is a possible information disclosure due to a missing permission check. This could lead to remote information disclosure to a proximal attacker with no additional execution privileges needed. User interacti...Show more In Boa, there is a possible information disclosure due to a missing permission check. This could lead to remote information disclosure to a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.Show less
CVE-2021-31575 1Mediatek 2En7528 Firmware En7580 Firmware Mar 26, 2025 Feb 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User i...Show more In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210009; Issue ID: OSBNB00123234.Show less
CVE-2021-31574 1Mediatek 2En7528 Firmware En7580 Firmware Mar 26, 2025 Feb 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User i...Show more In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210009; Issue ID: OSBNB00123234.Show less
CVE-2021-31573 1Mediatek 2En7528 Firmware En7580 Firmware Mar 26, 2025 Feb 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User i...Show more In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210009; Issue ID: OSBNB00123234.Show less