📦 Vilo 5 Firmware

Vilo 5 Mesh WiFi System versions up to 5.16.1.33 have an insecure custom TCP service on port 5432 that lacks authentication. Remote attackers can exploit this to gain administrative router access with...

A command injection vulnerability in Vilo 5 Mesh WiFi System allows authenticated attackers to execute arbitrary shell commands by injecting them into the device name field. This affects Vilo 5 Mesh W...

The Vilo 5 Mesh WiFi System running firmware version 5.16.1.33 or earlier contains an information disclosure vulnerability in its Boa webserver. Remote, unauthenticated attackers can leak memory addre...