Skip to main content

Agcombo Vd625 Firmware

1 CVEs product

Monthly

CVE-2021-27132 CRITICAL POC THREAT Emergency

SerComm AG Combo VD625 AGSOT_2.1.0 devices allow CRLF injection (for HTTP header injection) in the download function via the Content-Disposition header. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 16.7%.

Code Injection Agcombo Vd625 Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
16.7%
Threat
4.0
EPSS 17% 4.0 CVSS 9.8
CRITICAL POC THREAT Emergency

SerComm AG Combo VD625 AGSOT_2.1.0 devices allow CRLF injection (for HTTP header injection) in the download function via the Content-Disposition header. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 16.7%.

Code Injection Agcombo Vd625 Firmware
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy