2Er00Ne

**Name of the Vulnerable Software and Affected Versions** JD Cloud JDCOS version 4.5.1.r4518 **Description** A flaw in the Service Interface component allows remote command injection. The issue exists within the `set iptv info()` function of the '/jdcap' file, where improper handling of the `vid` argument enables the execution of arbitrary commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the '/jdcap' file or disable the `set iptv info()` function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Tenda HG3 version 2.0 300003070 **Description** An OS command injection flaw allows remote attackers to execute arbitrary operating system commands. The issue exists within the `formgponConf()` function located in the '/boaform/admin/formgponConf' endpoint, specifically through the manipulation of the `fmgpon loid` variable. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the '/boaform/admin/formgponConf' endpoint or avoid using the `fmgpon loid` parameter to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Tenda HG3 version 2.0 **Description** A remote command injection issue exists in the `formTracert()` function within the '/boaform/formTracert' file. This occurs when the `datasize` argument is manipulated, allowing an attacker to execute arbitrary commands on the device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the '/boaform/formTracert' endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Tenda HG3 version 2.0 **Description** A remote OS command injection exists in an unknown function within the '/boaform/formCountrystr' file. This occurs when the `countrystr` argument is manipulated, allowing an attacker to execute arbitrary operating system commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda HG3 version 2.0 **Description** A stack-based buffer overflow exists in the `formUploadConfig()` function within the '/boaform/formIPv6Routing' file. This issue occurs when the `destNet` argument is manipulated, allowing a remote attacker to initiate an attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ADSLR B-QE2W401 version 250814-r037c **Description** A command injection issue exists in ADSLR B-QE2W401 250814-r037c. Manipulation of the `del swifimac` parameter within the `/send order.cgi` file can lead to command execution. This attack can be performed remotely. The exploit is publicly available. The vendor was notified but did not respond. **Recommendations** Restrict or disable the use of the `/send order.cgi` file. As a temporary workaround, avoid using the `del swifimac` parameter in the `/send order.cgi` file until a fix is available.

**Name of the Vulnerable Software and Affected Versions** ADSLR NBR1005GPEV2 version 250814-r037c **Description** A flaw exists in ADSLR NBR1005GPEV2 250814-r037c that allows for command injection. This issue is located within the `set mesh disconnect` function of the `/send order.cgi` file. Manipulation of the `mac` argument can lead to remote code execution. The exploit for this issue is publicly available. The vendor was informed of this issue but did not provide a response. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ADSLR NBR1005GPEV2 version 250814-r037c **Description** A flaw exists in ADSLR NBR1005GPEV2 250814-r037c that allows for remote command injection. The issue is located within the `ap macfilter del` function of the `/send order.cgi` file. Manipulation of the `mac` argument can lead to unauthorized command execution. The exploit for this issue has been publicly disclosed. **Recommendations** As a temporary workaround, consider restricting access to the `/send order.cgi` file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ADSLR NBR1005GPEV2 version 250814-r037c **Description** A flaw exists in ADSLR NBR1005GPEV2 250814-r037c. The issue is related to the `ap macfilter add` function within the `/send order.cgi` file. Manipulation of the `mac` argument can result in command injection. This attack can be carried out remotely. An exploit for this issue has been published. The vendor was notified but did not respond. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.