Skip to main content

Blink Xt2 Sync Module Firmware

7 CVEs product

Monthly

CVE-2019-3984 CRITICAL POC Act Now

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when the device retrieves updates scripts from. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
CVSS 3.1
9.8
EPSS
3.8%
CVE-2019-3989 CRITICAL POC Act Now

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when retrieving internal network configuration. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
CVSS 3.1
9.8
EPSS
3.7%
CVE-2019-3988 HIGH POC This Week

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
CVSS 3.1
8.8
EPSS
1.7%
CVE-2019-3987 HIGH POC This Week

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
CVSS 3.1
8.8
EPSS
1.7%
CVE-2019-3986 HIGH POC This Week

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2019-3985 HIGH POC This Week

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
CVSS 3.1
8.8
EPSS
1.7%
CVE-2019-3983 MEDIUM POC This Month

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary code and commands on the device due to insufficient UART protections. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass RCE Blink Xt2 Sync Module Firmware
NVD
CVSS 3.1
6.8
EPSS
1.0%
EPSS 4% CVSS 9.8
CRITICAL POC Act Now

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when the device retrieves updates scripts from. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
EPSS 4% CVSS 9.8
CRITICAL POC Act Now

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when retrieving internal network configuration. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
EPSS 2% CVSS 8.8
HIGH POC This Week

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
EPSS 2% CVSS 8.8
HIGH POC This Week

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
EPSS 1% CVSS 8.8
HIGH POC This Week

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
EPSS 2% CVSS 8.8
HIGH POC This Week

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Blink Xt2 Sync Module Firmware
NVD
EPSS 1% CVSS 6.8
MEDIUM POC This Month

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary code and commands on the device due to insufficient UART protections. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass RCE Blink Xt2 Sync Module Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy