Olivierlaflamme

**Name of the Vulnerable Software and Affected Versions** GL.iNET MT3000 version 4.1.0 Release 2 **Description** The issue is related to OS Command Injection, which can be exploited via the `/usr/lib/oui-httpd/rpc/logread` endpoint. This allows for potential execution of system commands, posing a security risk. **Recommendations** For GL.iNET MT3000 version 4.1.0 Release 2, consider restricting access to the `/usr/lib/oui-httpd/rpc/logread` endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TIANJIE CPE906-3 version WEB5.0 LCD 20200513 **Description** The issue is related to password disclosure. It affects devices with specific software, firmware, and hardware versions. **Recommendations** For version WEB5.0 LCD 20200513, consider changing passwords and restricting access to sensitive information until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** COMFAST CF-WR623N Router firmware version V2.3.0.1 **Description** The issue is related to Incorrect Access Control. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For COMFAST CF-WR623N Router firmware version V2.3.0.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.