This page aggregates publicly disclosed CVE and security risk information related to meinbwa, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-10250 | BWA DiREX-Pro 1.2181 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the PKG parameter to uninstall.php3. | [email protected] | 9.8 | 2.63% | 2020-03-09 | 2026-06-16 |
| CVE-2020-10249 | BWA DiREX-Pro 1.2181 devices allow full path disclosure via an invalid name array parameter to val_soft.php3. | [email protected] | 5.3 | 0.95% | 2020-03-09 | 2026-06-16 |
| CVE-2020-10248 | BWA DiREX-Pro 1.2181 devices allow remote attackers to discover passwords via a direct request to val_users.php3. | [email protected] | 7.5 | 1.36% | 2020-03-09 | 2026-06-16 |