Skip to main content

Ak Sm 800A Firmware

3 CVEs product

Monthly

CVE-2023-25915 HIGH This Week

Due to improper input validation, an authenticated remote attacker could execute arbitrary commands on the target system. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Ak Sm 800A Firmware
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2023-25914 HIGH This Week

Due to improper restriction, authenticated attackers could retrieve and read system files of the underlying server through the XML interface. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Ak Sm 800A Firmware
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-25913 HIGH This Week

Because of an authentication flaw an attacker would be capable of generating a web report that discloses sensitive information such as internal IP addresses, usernames, store names and other. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ak Sm 800A Firmware
NVD
CVSS 3.1
7.5
EPSS
0.5%
EPSS 1% CVSS 8.8
HIGH This Week

Due to improper input validation, an authenticated remote attacker could execute arbitrary commands on the target system. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Ak Sm 800A Firmware
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Due to improper restriction, authenticated attackers could retrieve and read system files of the underlying server through the XML interface. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Ak Sm 800A Firmware
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Because of an authentication flaw an attacker would be capable of generating a web report that discloses sensitive information such as internal IP addresses, usernames, store names and other. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ak Sm 800A Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy