Show filters
6 Total Results
Displaying 1-6 of 6
Sort by:
Attacker Value
Unknown

CVE-2024-45276

Disclosure Date: October 15, 2024 (last updated January 24, 2025)
An unauthenticated remote attacker can get read access to files in the "/tmp" directory due to missing authentication.
0
0
Attacker Value
Unknown

CVE-2024-45275

Disclosure Date: October 15, 2024 (last updated October 18, 2024)
The devices contain two hard coded user accounts with hardcoded passwords that allow an unauthenticated remote attacker for full control of the affected devices.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-45274

Disclosure Date: October 15, 2024 (last updated October 18, 2024)
An unauthenticated remote attacker can execute OS commands via UDP on the device due to missing authentication.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-45273

Disclosure Date: October 15, 2024 (last updated October 18, 2024)
An unauthenticated local attacker can decrypt the devices config file and therefore compromise the device due to a weak implementation of the encryption used.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-45271

Disclosure Date: October 15, 2024 (last updated October 22, 2024)
An unauthenticated local attacker can gain admin privileges by deploying a config file due to improper input validation.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-5672

Disclosure Date: July 03, 2024 (last updated February 14, 2025)
A high privileged remote attacker can execute arbitrary system commands via GET requests due to improper neutralization of special elements used in an OS command.
0
0