Spike Reply Cybersecurity Team

17 exploits Active since Mar 2024
CVE-2023-51146 WRITEUP HIGH WRITEUP
TRENDnet AC1200 TEW-821D - Buffer Overflow
Buffer Overflow vulnerability in TRENDnet AC1200 TEW-821DAP with firmware version 3.00b06 allows an attacker to execute arbitrary code via the adm_add_user action.
CVSS 8.0
CVE-2023-51147 WRITEUP HIGH WRITEUP
TRENDnet AC1200 TEW-821D - Buffer Overflow
Buffer Overflow vulnerability in TRENDnet Trendnet AC1200 TEW-821DAP with firmware version 3.00b06 allows an attacker to execute arbitrary code via the adm_mod_pwd action.
CVSS 8.0
CVE-2023-51148 WRITEUP HIGH WRITEUP
TRENDnet TEW-821DAP Firmware 3.00b06 - Remote Code Execution via mycli Command-Line Interface
An issue in TRENDnet Trendnet AC1200 Dual Band PoE Indoor Wireless Access Point TEW-821DAP v.3.00b06 allows an attacker to execute arbitrary code via the 'mycli' command-line interface component.
CVSS 8.0
CVE-2024-27521 WRITEUP HIGH WRITEUP
TOTOLINK A3300R V17.0.0cu.557_B20221024 - RCE
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain an unauthenticated remote command execution (RCE) vulnerability via multiple parameters in the "setOpModeCfg" function. This security issue allows an attacker to take complete control of the device. In detail, exploitation allows unauthenticated, remote attackers to execute arbitrary system commands with administrative privileges (i.e., as user "root").
CVSS 8.0
CVE-2024-29421 WRITEUP MEDIUM WRITEUP
xmedcon 0.23.0 - Stack-based Buffer Overflow in libs/dicom/basic.c
xmedcon 0.23.0 and fixed in v.0.24.0 is vulnerable to Buffer Overflow via libs/dicom/basic.c which allows an attacker to execute arbitrary code.
CVSS 6.2
CVE-2024-48416 WRITEUP HIGH WRITEUP
Edimax BR-6476AC Firmware 1.06 - Buffer Overflow via /goform/fromSetLanDhcpsClientbinding
Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Buffer Overflow via /goform/fromSetLanDhcpsClientbinding.
CVSS 8.8
CVE-2024-48417 WRITEUP MEDIUM WRITEUP
Edimax BR-6476AC Firmware 1.06 - Stored Cross-Site Scripting via Static Route and URL Filter Parameters
Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Cross Site Scripting (XSS) in : /bin/goahead via /goform/setStaticRoute, /goform/fromSetFilterUrlFilter, and /goform/fromSetFilterClientFilter.
CVSS 5.2
CVE-2024-48418 WRITEUP HIGH WRITEUP
Edimax BR-6476AC 1.06 - OS Command Injection via DDNS Configuration
In Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06, the request /goform/fromSetDDNS does not properly handle special characters in any of user provided parameters, allowing an attacker with access to the web interface to inject and execute arbitrary shell commands.
CVSS 8.8
CVE-2024-48419 WRITEUP HIGH WRITEUP
Edimax BR-6476AC 1.06 Authenticated Command Injection via tracerouteDiagnosis
Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 suffers from Command Injection issues in /bin/goahead. Specifically, these issues can be triggered through /goform/tracerouteDiagnosis, /goform/pingDiagnosis, and /goform/fromSysToolPingCmd Each of these issues allows an attacker with access to the web interface to inject and execute arbitrary shell commands, with "root" privileges.
CVSS 8.8
CVE-2024-48420 WRITEUP HIGH WRITEUP
Edimax BR-6476AC Firmware 1.06 - Buffer Overflow via getWifiBasic Endpoint
Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Buffer Overflow via /goform/getWifiBasic.
CVSS 8.8
CVE-2025-26167 WRITEUP HIGH WRITEUP
Buffalo LS520D 4.53 - Info Disclosure
Buffalo LS520D 4.53 is vulnerable to Arbitrary file read, which allows unauthenticated attackers to access the NAS web UI and read arbitrary internal files.
CVSS 7.5
CVE-2025-64052 WRITEUP MEDIUM WORKING POC
Fanvil x210 V2 2.12.20 - Unauthenticated OS Command Injection
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to execute arbitrary system commands.
CVSS 5.1
CVE-2025-64053 WRITEUP HIGH WRITEUP
Fanvil x210 Firmware 2.12.20 - Buffer Overflow via Webconfig Upload Endpoint
A Buffer overflow vulnerability on Fanvil x210 2.12.20 devices allows attackers to cause a denial of service or potentially execute arbitrary commands via crafted POST request to the /cgi-bin/webconfig?page=upload&action=submit endpoint.
CVSS 7.5
CVE-2025-64054 WRITEUP CRITICAL WRITEUP
Fanvil x210 Firmware 2.12.20 - Reflected Cross-Site Scripting via Webconfig Upload Endpoint
A reflected Cross Site Scripting (XSS) vulnerability on Fanvil x210 2.12.20 devices allows attackers to cause a denial of service or potentially execute arbitrary commands via crafted POST request to the /cgi-bin/webconfig?page=upload&action=submit endpoint.
CVSS 9.6
CVE-2025-64055 WRITEUP CRITICAL WRITEUP
Fanvil x210 V2 2.12.20 - Unauthenticated Authentication Bypass
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.
CVSS 9.8
CVE-2025-64056 WRITEUP MEDIUM WRITEUP
Fanvil x210 V2 2.12.20 - Unauthenticated Arbitrary File Write via File Upload
File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem.
CVSS 4.3
CVE-2025-64057 WRITEUP HIGH WORKING POC
Fanvil x210 V2 2.12.20 - Unauthenticated Path Traversal and Arbitrary File Write
Directory traversal vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store files in arbitrary locations and potentially modify the system configuration or other unspecified impacts.
CVSS 8.3