Home/Product/openwrt
Product

openwrt

140 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-32721
< 24.10.6
LuCI is the OpenWrt Configuration Interface. Versions prior to both 24.10.5 and 25.12.0, contain a stored XSS vulnerability in the
8.6HIGH
 CVE-2026-30874
< 24.10.6
OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to 24.10.6, a vulnerability in the hotpl
7.8HIGH
 CVE-2026-30873
< 24.10.6
OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to both 24.10.6 and 25.12.1, the jp_get_
4.9MEDIUM
 CVE-2026-30872
< 24.10.6
OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to 24.10.6 and 25.12.1, the mdns daemon
9.8CRITICAL
 CVE-2026-30871
< 24.10.6
OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to 24.10.6 and 25.12.1, the mdns daemon
9.8CRITICAL
 CVE-2026-20435
all versions
In preloader, there is a possible read of device unique identifiers due to a logic error. This could lead to local information dis
4.6MEDIUM
 CVE-2026-20430
all versions
In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjac
8.8HIGH
 CVE-2026-20419
all versions
In wlan AP/STA firmware, there is a possible system becoming irresponsive due to an uncaught exception. This could lead to remote
6.5MEDIUM
 CVE-2026-20408
all versions
In wlan, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote (proximal/adjacent) esca
8.8HIGH
 CVE-2025-20765
all versions
In aee daemon, there is a possible system crash due to a race condition. This could lead to local denial of service if a malicious
4.7MEDIUM
 CVE-2025-20748
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
6.7MEDIUM
 CVE-2025-20747
all versions
In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of
6.7MEDIUM
 CVE-2025-20746
all versions
In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of
6.7MEDIUM
 CVE-2025-20742
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/a
8.0HIGH
 CVE-2025-20741
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
6.7MEDIUM
 CVE-2025-20739
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
6.7MEDIUM
 CVE-2025-20738
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
6.7MEDIUM
 CVE-2025-20737
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
7.8HIGH
 CVE-2025-20736
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
6.7MEDIUM
 CVE-2025-20735
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
7.8HIGH
 CVE-2025-20734
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
5.3MEDIUM
 CVE-2025-20733
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
7.8HIGH
 CVE-2025-20732
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
5.3MEDIUM
 CVE-2025-20731
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
5.3MEDIUM
 CVE-2025-20730
all versions
In preloader, there is a possible escalation of privilege due to an insecure default value. This could lead to local escalation of
6.7MEDIUM
 CVE-2025-20729
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
4.2MEDIUM
 CVE-2025-62526
< 24.10.4
OpenWrt Project is a Linux operating system targeting embedded devices. Prior to version 24.10.4, ubusd contains a heap buffer ove
7.9HIGH
 CVE-2025-62525
< 24.10.4
OpenWrt Project is a Linux operating system targeting embedded devices. Prior to version 24.10.4, local users could read and write
7.9HIGH
 CVE-2025-20724
all versions
In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information d
5.5MEDIUM
 CVE-2025-20722
all versions
In gnss driver, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure
5.5MEDIUM
 CVE-2025-20720
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/a
8.8HIGH
 CVE-2025-20719
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/a
8.8HIGH
 CVE-2025-20718
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
7.8HIGH
 CVE-2025-20717
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
7.8HIGH
 CVE-2025-20716
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
7.8HIGH
 CVE-2025-20715
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
7.8HIGH
 CVE-2025-20714
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
7.8HIGH
 CVE-2025-20713
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
7.8HIGH
 CVE-2025-20712
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/a
8.8HIGH
 CVE-2025-20711
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/a
8.8HIGH
 CVE-2025-20710
all versions
In wlan AP driver, there is a possible out of bounds write due to an integer overflow. This could lead to remote (proximal/adjacen
8.8HIGH
 CVE-2025-20709
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/a
8.8HIGH
 CVE-2025-20705
all versions
In monitor_hang, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if
7.8HIGH
 CVE-2025-20696
all versions
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if
6.8MEDIUM
 CVE-2025-20695
all versions
In Bluetooth FW, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service with n
6.5MEDIUM
 CVE-2025-20694
all versions
In Bluetooth FW, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service with n
6.5MEDIUM
 CVE-2025-20693
all versions
In wlan STA driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote (proximal/a
6.5MEDIUM
 CVE-2025-20692
all versions
In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information d
5.5MEDIUM
 CVE-2025-20691
all versions
In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information d
5.5MEDIUM
 CVE-2025-20690
all versions
In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information d
5.5MEDIUM
 CVE-2025-20689
all versions
In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information d
5.5MEDIUM
 CVE-2025-20688
all versions
In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information d
5.5MEDIUM
 CVE-2025-20686
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/a
8.8HIGH
 CVE-2025-20685
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/a
8.8HIGH
 CVE-2025-20683
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
9.8CRITICAL
 CVE-2025-20682
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
9.8CRITICAL
 CVE-2025-20681
all versions
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation o
9.8CRITICAL
 CVE-2025-20674
all versions
In wlan AP driver, there is a possible way to inject arbitrary packet due to a missing permission check. This could lead to remote
9.8CRITICAL
 CVE-2025-20656
all versions
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if
6.8MEDIUM
 CVE-2025-20654
all versions
In wlan service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code executio
9.8CRITICAL
 CVE-2025-20651
all versions
In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if a
4.1MEDIUM
 CVE-2025-20650
all versions
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if
6.8MEDIUM
 CVE-2025-20649
all versions
In Bluetooth Stack SW, there is a possible information disclosure due to a missing permission check. This could lead to remote (pr
6.5MEDIUM
 CVE-2025-20635
all versions
In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege,
6.6MEDIUM
 CVE-2024-20147
all versions
In Bluetooth FW, there is a possible reachable assertion due to improper exception handling. This could lead to remote denial of s
5.3MEDIUM
 CVE-2024-20152
all versions
In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of
4.4MEDIUM
 CVE-2024-20146
all versions
In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote (proximal/
8.1HIGH
 CVE-2024-20145
all versions
In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege,
6.6MEDIUM
 CVE-2024-20144
all versions
In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege,
6.6MEDIUM
 CVE-2024-20143
all versions
In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege,
6.6MEDIUM
 CVE-2024-20139
all versions
In Bluetooth firmware, there is a possible firmware asssert due to improper handling of exceptional conditions. This could lead to
6.5MEDIUM
 CVE-2024-20136
all versions
In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with
6.2MEDIUM
 CVE-2024-20107
all versions
In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with
6.2MEDIUM
 CVE-2024-20104
all versions
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wit
8.4HIGH
 CVE-2024-20085
all versions
In power, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wi
4.4MEDIUM
 CVE-2024-20084
all versions
In power, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure wi
4.4MEDIUM
 CVE-2024-20081
all versions
In gnss service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of
6.7MEDIUM
 CVE-2024-20073
all versions
In wlan service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of
6.6MEDIUM
 CVE-2024-20072
all versions
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of p
6.6MEDIUM
 CVE-2024-20071
all versions
In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to local information disc
4.4MEDIUM
 CVE-2024-20056
all versions
In preloader, there is a possible escalation of privilege due to an insecure default value. This could lead to local escalation of
6.7MEDIUM
 CVE-2023-32871
all versions
In DA, there is a possible permission bypass due to an incorrect status check. This could lead to local escalation of privilege wi
5.3MEDIUM
 CVE-2024-20054
all versions
In gnss, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privile
6.6MEDIUM
 CVE-2024-20053
all versions
In flashc, there is a possible out of bounds write due to an uncaught exception. This could lead to local escalation of privilege
8.4HIGH
 CVE-2024-20052
all versions
In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosur
4.4MEDIUM
 CVE-2024-20051
all versions
In flashc, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with System e
2.3LOW
 CVE-2024-20050
all versions
In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosur
4.4MEDIUM
 CVE-2024-20049
all versions
In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosur
4.4MEDIUM
 CVE-2024-20040
all versions
In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote escalation o
8.8HIGH
 CVE-2024-20023
all versions
In flashc, there is a possible out of bounds write due to lack of valudation. This could lead to local escalation of privilege wit
6.7MEDIUM
 CVE-2024-20022
all versions
In lk, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege
6.7MEDIUM
 CVE-2024-20017
all versions
In wlan service, there is a possible out of bounds write due to improper input validation. This could lead to remote code executio
9.8CRITICAL
 CVE-2024-20006
all versions
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wit
6.7MEDIUM
 CVE-2023-32855
all versions
In aee, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of priv
6.7MEDIUM
 CVE-2023-32815
all versions
In gnss service, there is a possible out of bounds read due to improper input validation. This could lead to local information dis
4.4MEDIUM
 CVE-2023-32813
all versions
In gnss service, there is a possible out of bounds write due to improper input validation. This could lead to local information di
4.4MEDIUM
 CVE-2023-32812
all versions
In gnss service, there is a possible out of bounds write due to improper input validation. This could lead to local esclation of p
6.7MEDIUM
 CVE-2023-32806
all versions
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of p
6.7MEDIUM
 CVE-2023-20832
all versions
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7MEDIUM
 CVE-2023-20831
all versions
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7MEDIUM
 CVE-2023-20830
all versions
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7MEDIUM
 CVE-2023-20829
all versions
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7MEDIUM
 CVE-2023-20828
all versions
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege wi
6.7MEDIUM
 CVE-2023-20821
all versions
In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege
6.7MEDIUM
 CVE-2023-20820
all versions
In wlan service, there is a possible command injection due to improper input validation. This could lead to remote code execution
7.2HIGH
 CVE-2023-20796
all versions
In power, there is a possible memory corruption due to an incorrect bounds check. This could lead to local denial of service with
4.4MEDIUM
 CVE-2023-20790
all versions
In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure w
4.4MEDIUM
 CVE-2023-20775
all versions
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privileg
6.7MEDIUM
 CVE-2023-20725
all versions
In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privil
6.7MEDIUM
 CVE-2023-20726
all versions
In mnld, there is a possible leak of GPS location due to a missing permission check. This could lead to local information disclosu
3.3LOW
 CVE-2023-20696
all versions
In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privil
6.7MEDIUM
 CVE-2023-20695
all versions
In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privil
6.7MEDIUM
 CVE-2023-20694
all versions
In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privil
6.7MEDIUM
 CVE-2023-24182
all versions
LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a stored cross-site scripting (XSS) vulnerability via
5.4MEDIUM
 CVE-2023-24181
all versions
LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a reflected cross-site scripting (XSS) vulnerability
5.4MEDIUM
 CVE-2022-41435
all versions
OpenWRT LuCI version git-22.140.66206-02913be was discovered to contain a stored cross-site scripting (XSS) vulnerability in the c
5.4MEDIUM
 CVE-2022-38333
< 21.02.3
Openwrt before v21.02.3 and Openwrt v22.03.0-rc6 were discovered to contain two skip loops in the function header_value(). This vu
7.5HIGH
 CVE-2021-45906
all versions
OpenWrt 21.02.1 allows XSS via the NAT Rules Name screen.
5.4MEDIUM
 CVE-2021-45905
all versions
OpenWrt 21.02.1 allows XSS via the Traffic Rules Name screen.
5.4MEDIUM
 CVE-2021-45904
all versions
OpenWrt 21.02.1 allows XSS via the Port Forwards Add Name screen.
5.4MEDIUM
 CVE-2021-32019
>= 19.07.0 and < 19.07.8
There is missing input validation of host names displayed in OpenWrt before 19.07.8. The Connection Status page of the luci web-in
6.1MEDIUM
 CVE-2021-33425
all versions
A stored cross-site scripting (XSS) vulnerability was discovered in the Web Interface for OpenWRT LuCI version 19.07 which allows
5.4MEDIUM
 CVE-2021-27821
<= 19.07.0
The Web Interface for OpenWRT LuCI version 19.07 and lower has been discovered to have a cross-site scripting vulnerability which
6.1MEDIUM
 CVE-2021-28961
all versions
applications/luci-app-ddns/luasrc/model/cbi/ddns/detail.lua in the DDNS package for OpenWrt 19.07 allows remote authenticated user
8.8HIGH
 CVE-2021-22161
>= 19.07.0 and <= 19.07.6
In OpenWrt 19.07.x before 19.07.7, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an
6.5MEDIUM
 CVE-2019-25015
>= 18.06.0 and <= 18.06.4
LuCI in OpenWrt 18.06.0 through 18.06.4 allows stored XSS via a crafted SSID.
5.4MEDIUM
 CVE-2020-28951
< 18.06.9
libuci in OpenWrt before 18.06.9 and 19.x before 19.07.5 may encounter a use after free when using malicious package names. This i
9.8CRITICAL
 CVE-2020-10871
all versions
In OpenWrt LuCI git-20.x, remote unauthenticated attackers can retrieve the list of installed packages and services. NOTE: the ven
5.3MEDIUM
 CVE-2020-7982
>= 18.06.0 and < 18.06.7
An issue was discovered in OpenWrt 18.06.0 to 18.06.6 and 19.07.0, and LEDE 17.01.0 to 17.01.7. A bug in the fork of the opkg pack
8.1HIGH
 CVE-2020-7248
>= 18.06.0 and < 18.06.7
libubox in OpenWrt before 18.06.7 and 19.x before 19.07.1 has a tagged binary data JSON serialization vulnerability that may cause
7.5HIGH
 CVE-2019-19945
>= 18.06.0 and <= 18.06.5
uhttpd in OpenWrt through 18.06.5 and 19.x through 19.07.0-rc2 has an integer signedness error. This leads to out-of-bounds access
7.5HIGH
 CVE-2019-18993
all versions
OpenWrt 18.06.4 allows XSS via the "New port forward" Name field to the cgi-bin/luci/admin/network/firewall/forwards URI (this can
5.4MEDIUM
 CVE-2019-18992
all versions
OpenWrt 18.06.4 allows XSS via these Name fields to the cgi-bin/luci/admin/network/firewall/rules URI: "Open ports on router" and
5.4MEDIUM
 CVE-2019-5102
all versions
An exploitable information leak vulnerability exists in the ustream-ssl library of OpenWrt, versions 18.06.4 and 15.05.1. When con
4.0MEDIUM
 CVE-2019-5101
all versions
An exploitable information leak vulnerability exists in the ustream-ssl library of OpenWrt, versions 18.06.4 and 15.05.1. When con
4.0MEDIUM
 CVE-2019-17367
all versions
OpenWRT firmware version 18.06.4 is vulnerable to CSRF via wireless/radio0.network1, wireless/radio1.network1, firewall, firewall/
8.8HIGH
 CVE-2019-15513
all versions
An issue was discovered in OpenWrt libuci (aka Library for the Unified Configuration Interface) before 15.05.1 as used on Motorola
7.5HIGH
 CVE-2019-12272
<= 0.10.0
In OpenWrt LuCI through 0.10, the endpoints admin/status/realtime/bandwidth_status and admin/status/realtime/wireless_status of th
9.8CRITICAL
 CVE-2018-19630
<= 18.06.1
cgi_handle_request in uhttpd in OpenWrt through 18.06.1 and LEDE through 17.01 has unauthenticated reflected XSS via the URI, as d
6.1MEDIUM
 CVE-2018-11116
all versions
OpenWrt mishandles access control in /etc/config/rpcd and the /usr/share/rpcd/acl.d files, which allows remote authenticated users
8.8HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin