GCVE - cpe:2.3:h:skyworthdigital:rn510:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:skyworthdigital:rn510:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Skyworthdigital (`63db7fe3-cd76-59f8-8d0c-01b89f1c3289`)
Product	Rn510 (`57afb4f4-178f-5540-a7d2-82494a790611`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-25328`	not_vulnerable	2026-06-03 14:44:05.047619	Details available Skyworth Digital Technology RN510 V.3.1.0.4 RN510 V.3.1.0.4 contains a buffer overflow vulnerability in /cgi-bin/app-staticIP.asp. An authenticated attacker can send a specially crafted request to endpoint which can lead to a denial of service (DoS) or possible code execution on the device. Published: 2021-04-09T12:19:32.000Z Updated: 2024-08-03T20:03:05.275Z Open on db.gcve.eu Reference links https://s3curityb3ast.github.io/KSA-Dev-011.md http://seclists.org/fulldisclosure/2021/May/5 http://packetstormsecurity.com/files/162450/Shenzhen-Skyworth-RN510-Buffer-Overflow.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-25327`	not_vulnerable	2026-06-03 14:44:05.047258	Details available Skyworth Digital Technology RN510 V.3.1.0.4 contains a cross-site request forgery (CSRF) vulnerability in /cgi-bin/net-routeadd.asp and /cgi-bin/sec-urlfilter.asp. Missing CSRF protection in devices can lead to XSRF, as the above pages are vulnerable to cross-site scripting (XSS). Published: 2021-04-09T12:19:27.000Z Updated: 2024-08-03T20:03:05.264Z Open on db.gcve.eu Reference links https://s3curityb3ast.github.io/KSA-Dev-012.md http://seclists.org/fulldisclosure/2021/May/6 http://packetstormsecurity.com/files/162454/Shenzhen-Skyworth-RN510-Cross-Site-Request-Forgery-Cross-Site-Scripting.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-25326`	not_vulnerable	2026-06-03 14:44:05.046779	Details available Skyworth Digital Technology RN510 V.3.1.0.4 is affected by an incorrect access control vulnerability in/cgi-bin/test_version.asp. If Wi-Fi is connected but an unauthenticated user visits a URL, the SSID password and web UI password may be disclosed. Published: 2021-04-09T12:19:22.000Z Updated: 2024-08-03T20:03:05.377Z Open on db.gcve.eu Reference links https://s3curityb3ast.github.io/KSA-Dev-013.md http://seclists.org/fulldisclosure/2021/May/8 http://packetstormsecurity.com/files/162455/Shenzhen-Skyworth-RN510-Information-Disclosure.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.