📦 Waybox Pro Firmware

CVE-2023-29120 is a critical OS command injection vulnerability in Waybox Enel X web management applications that allows authenticated attackers to execute arbitrary commands with administrator privil...

CVE-2023-29125 is a heap buffer overflow vulnerability in TCP port 7700 services that allows remote attackers to execute arbitrary code or cause denial of service by sending a specially crafted packet...

This vulnerability allows unauthenticated attackers to execute arbitrary SQL commands on the Waybox Enel X web management application's internal database via the /admin/versions.php endpoint. This aff...

CVE-2023-29117 is an authentication bypass vulnerability in Waybox Enel X web management API that allows attackers to gain administrator privileges without valid credentials. This affects Waybox syste...

This vulnerability allows unauthenticated attackers to obtain sensitive information from Waybox Enel X web management applications, including OS version and service configuration details. It affects W...