This page lists publicly disclosed CVE vulnerabilities affecting ip-com m50_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-45721 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the picName parameter in the formDelWewifiPic function. | [email protected] | 9.8 | 0.39% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45720 | IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the ip, mac, and remark parameters in the formIPMacBindModify function. | [email protected] | 9.8 | 0.39% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45719 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the gotoUrl parameter in the formPortalAuth function. | [email protected] | 9.8 | 0.39% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45718 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formIPMacBindAdd function. | [email protected] | 9.8 | 0.39% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45717 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function. This vulnerability is exploited via a crafted GET request. | [email protected] | 9.8 | 5.32% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45716 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the indexSet parameter in the formIPMacBindDel function. | [email protected] | 9.8 | 0.39% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45715 | IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the pLanPortRange and pWanPortRange parameters in the formSetPortMapping function. | [email protected] | 9.8 | 0.39% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45714 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the indexSet parameter in the formQOSRuleDel function. | [email protected] | 9.8 | 0.39% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45712 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formAddDnsForward function. | [email protected] | 9.8 | 0.39% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45711 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the hostname parameter in the formSetNetCheckTools function. | [email protected] | 9.8 | 15.79% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45710 | IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function. | [email protected] | 9.8 | 0.39% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45709 | IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple command injection vulnerabilities via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function. | [email protected] | 9.8 | 5.32% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45708 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the sPortMapIndex parameter in the formDelPortMapping function. | [email protected] | 9.8 | 0.40% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45707 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formAddDnsHijack function. | [email protected] | 9.8 | 0.40% | 2022-12-23 | 2025-04-15 |
| CVE-2022-45706 | IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the hostname parameter in the formSetNetCheckTools function. | [email protected] | 9.8 | 0.40% | 2022-12-23 | 2025-04-15 |