Cisco WAP131 Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:cisco:wap131_firmware:-:*:*:*:*:*:*:*
part: o version: - update: *
| Vendor | Cisco (e1b3baff-aaf9-56a6-a68a-41e28ce616a5) |
|---|---|
| Product | Wap131 Firmware (5e7e0a07-2d38-5163-8c76-5b2d9fb5fe3e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-20336 |
vulnerable | 2026-06-03 14:54:40.029121 |
Details available
MEDIUM (6.5)
A vulnerability in the web-based user interface of Cisco Small Business 100, 300, and 500 Series Wireless APs could allow an authenticated, remote attacker to perform buffer overflow attacks against an affected device. In order to exploit this vulnerability, the attacker must have valid administrative credentials for the device. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary code as the root user on the underlying operating system.
Published: 2024-03-06T16:31:10.729Z
Updated: 2024-08-01T21:59:41.754Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-20335 |
vulnerable | 2026-06-03 14:54:40.017396 |
Details available
MEDIUM (6.5)
A vulnerability in the web-based management interface of Cisco Small Business 100, 300, and 500 Series Wireless APs could allow an authenticated, remote attacker to perform command injection attacks against an affected device. In order to exploit this vulnerability, the attacker must have valid administrative credentials for the device. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary code as the root user on the underlying operating system.
Published: 2024-03-06T16:30:39.235Z
Updated: 2024-08-01T21:59:41.400Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.