|ID||CVSS||Summary||Last (major) update||Published|
In OpenWrt LuCI through 0.10, the endpoints admin/status/realtime/bandwidth_status and admin/status/realtime/wireless_status of the web application are affected by a command injection vulnerability.
|24-05-2019 - 17:10||23-05-2019 - 15:30|
** DISPUTED ** In OpenWrt LuCI git-20.x, remote unauthenticated attackers can retrieve the list of installed packages and services. NOTE: the vendor disputes the significance of this report because, for instances reachable by an unauthenticated actor
|23-03-2020 - 20:17||23-03-2020 - 20:15|