EnGenius ENS500-AC 5 GHz 11ac Wave 2 PtP Outdoor Access Point/Wireless Bridge
Approved changes feed: RSS · Atom
cpe:2.3:h:engeniustech:ens500-ac:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Engeniustech (e5932356-76b0-5cb7-b9ff-f7b3515c8a1a) |
|---|---|
| Product | Ens500 Ac (a455799e-0bf4-5590-a2b2-b6f9b44fe654) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-11659 |
not_vulnerable | 2026-06-03 14:54:14.584803 |
EnGenius ENH1350EXT/ENS500-AC/ENS620EXT diag_iperf command injection
MEDIUM (4.7)
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/network/diag_iperf. The manipulation of the argument iperf leads to command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-11-25T06:31:24.416Z
Updated: 2024-11-25T21:02:10.204Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-11658 |
not_vulnerable | 2026-06-03 14:54:14.584029 |
EnGenius ENH1350EXT/ENS500-AC/ENS620EXT ajax_getChannelList command injection
MEDIUM (4.7)
A vulnerability has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/network/ajax_getChannelList. The manipulation of the argument countryCode leads to command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-11-25T06:00:26.332Z
Updated: 2024-11-26T15:51:23.057Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-11657 |
not_vulnerable | 2026-06-03 14:54:14.583266 |
EnGenius ENH1350EXT/ENS500-AC/ENS620EXT diag_nslookup command injection
MEDIUM (4.7)
A vulnerability, which was classified as critical, was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. Affected is an unknown function of the file /admin/network/diag_nslookup. The manipulation of the argument diag_nslookup leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-11-25T05:31:25.482Z
Updated: 2024-11-26T15:25:02.758Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-11656 |
not_vulnerable | 2026-06-03 14:54:14.582308 |
EnGenius ENH1350EXT/ENS500-AC/ENS620EXT diag_ping6 command injection
MEDIUM (4.7)
A vulnerability, which was classified as critical, has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. This issue affects some unknown processing of the file /admin/network/diag_ping6. The manipulation of the argument diag_ping6 leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-11-25T05:00:28.655Z
Updated: 2024-11-26T15:45:02.709Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-11655 |
not_vulnerable | 2026-06-03 14:54:14.581444 |
EnGenius ENH1350EXT/ENS500-AC/ENS620EXT diag_pinginterface command injection
MEDIUM (4.7)
A vulnerability classified as critical was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. This vulnerability affects unknown code of the file /admin/network/diag_pinginterface. The manipulation of the argument diag_ping leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-11-25T04:31:23.693Z
Updated: 2024-11-26T15:46:43.301Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-11654 |
not_vulnerable | 2026-06-03 14:54:14.580630 |
EnGenius ENH1350EXT/ENS500-AC/ENS620EXT diag_traceroute6 command injection
MEDIUM (4.7)
A vulnerability classified as critical has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. This affects an unknown part of the file /admin/network/diag_traceroute6. The manipulation of the argument diag_traceroute6 leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-11-25T04:00:27.286Z
Updated: 2024-11-26T15:48:44.903Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-11653 |
not_vulnerable | 2026-06-03 14:54:14.579752 |
EnGenius ENH1350EXT/ENS500-AC/ENS620EXT diag_traceroute command injection
MEDIUM (4.7)
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/network/diag_traceroute. The manipulation of the argument diag_traceroute leads to command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-11-25T03:31:30.271Z
Updated: 2024-11-26T15:51:27.284Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-11652 |
not_vulnerable | 2026-06-03 14:54:14.575723 |
EnGenius ENH1350EXT/ENS500-AC/ENS620EXT sn_https command injection
MEDIUM (4.7)
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/sn_package/sn_https. The manipulation of the argument https_enable leads to command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-11-25T03:00:34.348Z
Updated: 2024-11-25T20:13:27.837Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-11651 |
not_vulnerable | 2026-06-03 14:54:14.574731 |
EnGenius ENH1350EXT/ENS500-AC/ENS620EXT wifi_schedule command injection
MEDIUM (4.7)
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has been classified as critical. Affected is an unknown function of the file /admin/network/wifi_schedule. The manipulation of the argument wifi_schedule_day_em_5 leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-11-25T02:31:24.797Z
Updated: 2024-11-25T20:14:34.678Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.