← Back

Ignitenet

ignitenet

3 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Helios Glinq
helios_glinq
3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-5783
1Ignitenet
1Helios Glinq
Jun 17, 2026
Sep 23, 2020
N/A· v4
5.4 MEDIUM· v3
5.8 MEDIUM· v2
In IgniteNet HeliOS GLinq v2.2.1 r2961, the login functionality does not contain any CSRF protection mechanisms.
CVE-2020-5782
1Ignitenet
1Helios Glinq
Jun 17, 2026
Sep 23, 2020
N/A· v4
6.5 MEDIUM· v3
6.8 MEDIUM· v2
In IgniteNet HeliOS GLinq v2.2.1 r2961, if a user logs in and sets the ‘wan_type’ parameter, the wan interface for the device will become unreachable, which results in a denial of service condition for devices dependent...Show more
In IgniteNet HeliOS GLinq v2.2.1 r2961, if a user logs in and sets the ‘wan_type’ parameter, the wan interface for the device will become unreachable, which results in a denial of service condition for devices dependent on this connection.Show less
CVE-2020-5781
1Ignitenet
1Helios Glinq
Jun 17, 2026
Sep 23, 2020
N/A· v4
4.3 MEDIUM· v3
4.0 MEDIUM· v2
In IgniteNet HeliOS GLinq v2.2.1 r2961, the langSelection parameter is stored in the luci configuration file (/etc/config/luci) by the authenticator.htmlauth function. When modified with arbitrary javascript, this causes...Show more
In IgniteNet HeliOS GLinq v2.2.1 r2961, the langSelection parameter is stored in the luci configuration file (/etc/config/luci) by the authenticator.htmlauth function. When modified with arbitrary javascript, this causes a denial-of-service condition for all other users.Show less