Click the icon to Follow me:- twitterTelegramRedditDiscord


In Weidmueller Industrial WLAN devices in multiple versions an exploitable remote code execution vulnerability exists in the iw_webs configuration parsing functionality. A specially crafted user name entry can cause an overflow of an error message buffer, resulting in remote code execution. An attacker can send commands while authenticated as a low privilege user to trigger this vulnerability.

Reference Links(if available):

  • CVSS Score (if available)

    v2: / LOW

    v3: /

    Links to Exploits(if available)

  • Available for Amazon Prime