This page lists publicly disclosed CVE vulnerabilities affecting netis-systems n3m_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-45468 | Netis N3Mv2-V1.0.1.865 was discovered to contain a buffer overflow via the pingWdogIp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. | [email protected] | 7.5 | 0.69% | 2023-10-13 | 2026-06-17 |
| CVE-2023-45467 | Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ntpServIP parameter in the Time Settings. | [email protected] | 9.8 | 1.90% | 2023-10-13 | 2026-06-17 |
| CVE-2023-45465 | Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the ddnsDomainName parameter in the Dynamic DNS settings. | [email protected] | 9.8 | 1.84% | 2023-10-13 | 2026-06-17 |
| CVE-2023-45464 | Netis N3Mv2-V1.0.1.865 was discovered to contain a buffer overflow via the servDomain parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. | [email protected] | 7.5 | 0.62% | 2023-10-13 | 2026-06-17 |
| CVE-2023-45463 | Netis N3Mv2-V1.0.1.865 was discovered to contain a buffer overflow via the hostName parameter in the FUN_0040dabc function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. | [email protected] | 7.5 | 0.62% | 2023-10-13 | 2026-06-17 |
| CVE-2023-44860 | An issue in NETIS SYSTEMS N3Mv2 v.1.0.1.865 allows a remote attacker to cause a denial of service via the authorization component in the HTTP request. | [email protected] | 7.5 | 19.51% | 2023-10-06 | 2026-06-17 |
| CVE-2023-43893 | Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the wakeup_mac parameter in the Wake-On-LAN (WoL) function. This vulnerability is exploited via a crafted payload. | [email protected] | 9.8 | 1.89% | 2023-10-02 | 2026-06-17 |
| CVE-2023-43892 | Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the Hostname parameter within the WAN settings. This vulnerability is exploited via a crafted payload. | [email protected] | 9.8 | 1.89% | 2023-10-02 | 2026-06-17 |
| CVE-2023-43891 | Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability in the Changing Username and Password function. This vulnerability is exploited via a crafted payload. | [email protected] | 9.8 | 1.91% | 2023-10-02 | 2026-06-17 |
| CVE-2023-43890 | Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability in the diagnostic tools page. This vulnerability is exploited via a crafted HTTP request. | [email protected] | 8.8 | 2.54% | 2023-10-02 | 2026-06-17 |