Airties: Security Vulnerabilities
Airties 5444 1.0.0.18 and 5444TT 1.0.0.18 devices allow XSS.
CVSS Score
6.1
EPSS Score
0.003
Published
2018-07-05
Multiple cross-site scripting (XSS) vulnerabilities in the web interface in Airties RT-210 allow remote attackers to inject arbitrary web script or HTML via the (1) ddns_domainame or (2) ddns_account parameter to ddns.stm.
CVSS Score
4.3
EPSS Score
0.002
Published
2015-06-19
Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execute arbitrary code via a long string in the redirect parameter to cgi-bin/login.
CVSS Score
10.0
EPSS Score
0.771
Published
2015-06-19
Cross-site scripting (XSS) vulnerability in top.html in the Airties Air 6372 modem allows remote attackers to inject arbitrary web script or HTML via the productboardtype parameter.
CVSS Score
4.3
EPSS Score
0.002
Published
2015-01-13
AirTies Air 4450 1.1.2.18 allows remote attackers to cause a denial of service (reboot) via a direct request to cgi-bin/loader.
CVSS Score
5.0
EPSS Score
0.1
Published
2012-01-20
Page 2