Known Vulnerabilities for products from Peplink
Listed below are 8 of the newest known vulnerabilities associated with the vendor "Peplink".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Peplink can be found at device.report : Peplink
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-24246 | Peplink Balance before 8.1.0rc1 allows an unauthenticated attacker to download PHP configuration files (/filemanager/php/conn... | 7.5 - HIGH | 2020-10-07 | 2020-10-23 |
| CVE-2017-8841 | Arbitrary file deletion exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_... | 8.1 - HIGH | 2017-06-05 | 2017-08-13 |
| CVE-2017-8840 | Debug information disclosure exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b30... | 5.3 - MEDIUM | 2017-06-05 | 2017-08-13 |
| CVE-2017-8839 | XSS via orig_url exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_... | 6.1 - MEDIUM | 2017-06-05 | 2017-08-13 |
| CVE-2017-8838 | XSS via syncid exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_58... | 6.1 - MEDIUM | 2017-06-05 | 2017-08-13 |
| CVE-2017-8837 | Cleartext password storage exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305h... | 9.8 - CRITICAL | 2017-06-05 | 2019-10-03 |
| CVE-2017-8836 | CSRF exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw... | 8.8 - HIGH | 2017-06-05 | 2017-08-13 |
| CVE-2017-8835 | SQL injection exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580... | 9.8 - CRITICAL | 2017-06-05 | 2017-08-13 |
Known software with vulnerabilities from Peplink
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Peplink | Balance 1350 | hw2 |
| Operating System | Peplink | Balance 1350 Firmware | 8.1.0 |
| Hardware | Peplink | Balance 20 | - |
| Operating System | Peplink | Balance 20 Firmware | 8.1.0 |
| Hardware | Peplink | Balance 20x | - |
| Operating System | Peplink | Balance 20x Firmware | 8.1.0 |
| Hardware | Peplink | Balance 210 | - |
| Operating System | Peplink | Balance 210 Firmware | 8.1.0 |
| Operating System | Peplink | Balance 2500 Firmware | 8.1.0 |
| Hardware | Peplink | Balance 30 | - |
| Operating System | Peplink | Balance 30 Firmware | 8.1.0 |
| Hardware | Peplink | Balance 30 Lte | - |
| Operating System | Peplink | Balance 30 Lte Firmware | 8.1.0 |
| Hardware | Peplink | Balance 30 Pro | - |
| Operating System | Peplink | Balance 30 Pro Firmware | 8.1.0 |
| Hardware | Peplink | Balance 305 | hw2 |
| Operating System | Peplink | Balance 305 Firmware | 8.1.0 |
| Hardware | Peplink | Balance 310 | - |
| Operating System | Peplink | Balance 310 Firmware | 8.1.0 |
| Hardware | Peplink | Balance 310x | - |