Neonsea

**Name of the Vulnerable Software and Affected Versions** Inteno IOPSYS (affected versions not specified) **Description** The issue allows attackers to gain privileges by writing to /tmp/etc/smb.conf due to /var being a symlink to /tmp. This is related to the `read tmp` and `write tmp` in Inteno IOPSYS. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: p910nd on Inteno IOPSYS versions 2.0 through 4.2.0 Description: The issue allows remote attackers to read or append data to arbitrary files by sending requests on TCP port 9100. Recommendations: For versions 2.0 through 4.2.0, restrict access to TCP port 9100 to prevent exploitation.

Name of the Vulnerable Software and Affected Versions: Inteno iopsys versions 2.0 through 3.14 Inteno iopsys version 4.0 Description: The issue allows remote authenticated users to execute arbitrary OS commands by modifying the `leasetrigger` field in the odhcpd configuration. This can be done to specify an arbitrary program, such as one located on an SMB share. The problem exists due to the improper use of the /etc/uci-defaults directory, which fails to secure the OpenWrt configuration. Recommendations: For Inteno iopsys versions 2.0 through 3.14, update the configuration to properly utilize the /etc/uci-defaults directory for securing OpenWrt. For Inteno iopsys version 4.0, update the configuration to properly utilize the /etc/uci-defaults directory for securing OpenWrt. As a temporary workaround, consider restricting access to the odhcpd configuration to minimize the risk of exploitation.