Vonets VAP11G-300
Approved changes feed: RSS · Atom
cpe:2.3:h:vonets:vap11g-300:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Vonets (e6676fa3-6026-54e5-aa9d-79f3f94bb0bc) |
|---|---|
| Product | Vap11G 300 (a0396244-2f5d-5d84-9d71-d9a2889bcea6) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-46330 |
not_vulnerable | 2026-06-03 14:56:59.464002 |
Details available
VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the iptablesWebsFilterRun object.
Published: 2024-09-26T00:00:00.000Z
Updated: 2024-09-26T14:31:23.200Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-46329 |
not_vulnerable | 2026-06-03 14:56:59.463673 |
Details available
VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the SystemCommand object.
Published: 2024-09-26T00:00:00.000Z
Updated: 2024-09-26T14:31:30.205Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-46328 |
not_vulnerable | 2026-06-03 14:56:59.463303 |
Details available
VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain hardcoded credentials for several different privileged accounts, including root.
Published: 2024-09-26T00:00:00.000Z
Updated: 2024-09-26T14:31:36.573Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-46327 |
not_vulnerable | 2026-06-03 14:56:59.462852 |
Details available
An issue in the Http_handle object of VONETS VAP11G-300 v3.3.23.6.9 allows attackers to access sensitive files via a directory traversal.
Published: 2024-09-26T00:00:00.000Z
Updated: 2024-09-26T14:31:46.239Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-42001 |
not_vulnerable | 2026-06-03 14:56:35.694297 |
Vonets WiFi Bridges Forced Browsing
HIGH (8.6)
An improper authentication vulnerability affecting Vonets
industrial wifi bridge relays and wifi bridge repeaters, software versions
3.3.23.6.9 and prior enables an unauthenticated remote attacker to
bypass authentication via a specially crafted direct request when
another user has an active session.
Published: 2024-08-08T19:39:49.024Z
Updated: 2024-08-21T20:04:53.127Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-41936 |
not_vulnerable | 2026-06-03 14:56:35.455177 |
Vonets WiFi Bridges Path Traversal
HIGH (7.5)
A directory traversal vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9
and prior, enables an unauthenticated remote attacker to read arbitrary
files and bypass authentication.
Published: 2024-08-08T19:27:19.585Z
Updated: 2024-08-21T20:05:27.996Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-41161 |
not_vulnerable | 2026-06-03 14:56:34.166024 |
Vonets WiFi Bridges Use of Hard-coded Credentials
HIGH (7.5)
Use of hard-coded credentials vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions
3.3.23.6.9 and prior, enables an unauthenticated remote attacker to
bypass authentication using hard-coded administrator credentials. These
accounts cannot be disabled.
Published: 2024-08-08T17:49:35.888Z
Updated: 2024-08-09T14:37:54.073Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-39815 |
not_vulnerable | 2026-06-03 14:56:22.485872 |
Vonets WiFi Bridges Improper Check or Handling of Exceptional Conditions
CRITICAL (9.1)
Improper check or handling of exceptional conditions vulnerability
affecting Vonets
industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an unauthenticated
remote attacker to cause a denial of service. A specially-crafted
HTTP request to pre-authentication resources can crash the service.
Published: 2024-08-08T19:33:35.137Z
Updated: 2024-08-21T20:04:38.205Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-39791 |
not_vulnerable | 2026-06-03 14:56:22.457242 |
Vonets WiFi Bridges Stack-based Buffer Overflow
CRITICAL (10)
Stack-based buffer overflow vulnerabilities affecting Vonets
industrial wifi bridge relays and wifi bridge repeaters, software versions
3.3.23.6.9 and prior, enable an unauthenticated remote attacker to
execute arbitrary code.
Published: 2024-08-08T19:36:17.337Z
Updated: 2024-08-21T20:05:07.240Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-37023 |
not_vulnerable | 2026-06-03 14:56:05.472342 |
Vonets WiFi Bridges Command Injection
CRITICAL (9.1)
Multiple OS command injection vulnerabilities affecting Vonets
industrial wifi bridge relays and wifi bridge repeaters, software
versions 3.3.23.6.9 and prior, enable an authenticated remote attacker
to execute arbitrary OS commands via various endpoint parameters.
Published: 2024-08-08T19:30:40.496Z
Updated: 2024-08-21T20:04:21.492Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-29082 |
not_vulnerable | 2026-06-03 14:55:26.808985 |
Vonets WiFi Bridges Improper Access Control
HIGH (8.6)
Improper access control vulnerability affecting Vonets
industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9
and prior, enables an unauthenticated remote attacker to bypass
authentication and factory reset the device via unprotected goform
endpoints.
Published: 2024-08-08T19:23:23.133Z
Updated: 2024-08-21T20:03:57.401Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.