Shodan
Vulnerabilities
Vulnerable Software
Ip-Com:  Security Vulnerabilities
CVE-2026-2017
A vulnerability was detected in IP-COM W30AP up to 1.0.0.11(1340). Affected by this issue is the function R7WebsSecurityHandler of the file /goform/wx3auth of the component POST Request Handler. The manipulation of the argument data results in stack-based buffer overflow. The attack may be performed from remote. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Score
8.9
EPSS Score
0.001
Published
2026-02-06
CVE-2022-45715
IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the pLanPortRange and pWanPortRange parameters in the formSetPortMapping function.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-23
CVE-2022-45716
IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the indexSet parameter in the formIPMacBindDel function.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-23
CVE-2022-45717
IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function. This vulnerability is exploited via a crafted GET request.
CVSS Score
9.8
EPSS Score
0.053
Published
2022-12-23
CVE-2022-45718
IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formIPMacBindAdd function.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-23
CVE-2022-45719
IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the gotoUrl parameter in the formPortalAuth function.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-23
CVE-2022-45720
IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the ip, mac, and remark parameters in the formIPMacBindModify function.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-23
CVE-2022-45721
IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the picName parameter in the formDelWewifiPic function.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-23
CVE-2022-45706
IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the hostname parameter in the formSetNetCheckTools function.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-23
CVE-2022-45707
IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formAddDnsHijack function.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-12-23


Products
Pricing
Contact Us

Shodan ® - All rights reserved