Skip to main content

Bf 631 Firmware

2 CVEs product

Monthly

CVE-2021-31643 MEDIUM POC THREAT This Month

An XSS vulnerability exists in several IoT devices from CHIYU Technology, including SEMAC, Biosense, BF-630, BF-631, and Webpass due to a lack of sanitization on the component if.cgi - username. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bf 631 Firmware Bf 630 Firmware Semac S2 Firmware Semac D1 Firmware +7
NVD
CVSS 3.1
5.4
EPSS
88.4%
CVE-2021-31642 MEDIUM POC THREAT This Month

A denial of service condition exists after an integer overflow in several IoT devices from CHIYU Technology, including BIOSENSE, Webpass, and BF-630, BF-631, and SEMAC. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Denial Of Service Semac S2 Firmware Semac D1 Firmware Semac D2 Firmware +8
NVD Exploit-DB
CVSS 3.1
6.5
EPSS
43.7%
EPSS 88% CVSS 5.4
MEDIUM POC THREAT This Month

An XSS vulnerability exists in several IoT devices from CHIYU Technology, including SEMAC, Biosense, BF-630, BF-631, and Webpass due to a lack of sanitization on the component if.cgi - username. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bf 631 Firmware Bf 630 Firmware +9
NVD
EPSS 44% CVSS 6.5
MEDIUM POC THREAT This Month

A denial of service condition exists after an integer overflow in several IoT devices from CHIYU Technology, including BIOSENSE, Webpass, and BF-630, BF-631, and SEMAC. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Denial Of Service Semac S2 Firmware +10
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy