Product
oringnet iap 420 firmware
8 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-55548
CVE-2024-55547
CVE-2024-55546
CVE-2024-55545
CVE-2024-55544
CVE-2024-5411
CVE-2024-5410
CVE-2022-3203
<= 2.01e
Improper check of password character lenght in ORing IAP-420 allows a forced deadlock. This issue affects IAP-420: through 2.01e.
<= 2.01e
SNMP objects in NET-SNMP used in ORing IAP-420 allows Command Injection. This issue affects IAP-420: through 2.01e.
<= 2.01e
Missing input validation in the ORing IAP-420 web-interface allows stored Cross-Site Scripting (XSS).This issue affects IAP-420 ve
<= 2.01e
Missing input validation in the ORing IAP-420 web-interface allows Cross-Site Scripting (XSS).This issue affects IAP-420 version 2
<= 2.01e
Missing input validation in the ORing IAP-420 web-interface allows authenticated Command Injections on OS level.This issue affects
<= 2.01e
Missing input validation and OS command integration of the input in the ORing IAP-420 web-interface allows authenticated command i
<= 2.01e
Missing input validation in the ORing IAP-420 web-interface allows stored Cross-Site Scripting (XSS).This issue affects IAP-420 ve
all versions
On ORing net IAP-420(+) with FW version 2.0m a telnet server is enabled by default and cannot permanently be disabled. You can con