Skip to main content

Ey As525F001 Firmware

5 CVEs product

Monthly

CVE-2023-28655 MEDIUM This Month

A malicious user could leverage this vulnerability to escalate privileges or perform unauthorized actions in the context of the targeted privileged users. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Ey As525F001 Firmware
NVD
CVSS 3.1
5.4
EPSS
0.3%
CVE-2023-28652 MEDIUM This Month

An authenticated malicious user could successfully upload a malicious image could lead to a denial-of-service condition. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload Ey As525F001 Firmware
NVD
CVSS 3.1
6.5
EPSS
0.6%
CVE-2023-28650 MEDIUM This Month

An unauthenticated remote attacker could provide a malicious link and trick an unsuspecting user into clicking on it. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Ey As525F001 Firmware
NVD
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-27927 MEDIUM This Month

An authenticated malicious user could acquire the simple mail transfer protocol (SMTP) Password in cleartext format, despite it being protected and hidden behind asterisks. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Ey As525F001 Firmware
NVD
CVSS 3.1
6.5
EPSS
0.4%
CVE-2023-22300 MEDIUM This Month

An unauthenticated remote attacker could force all authenticated users, such as administrative users, to perform unauthorized actions by viewing the logs. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation XSS Ey As525F001 Firmware
NVD
CVSS 3.1
6.1
EPSS
0.5%
EPSS 0% CVSS 5.4
MEDIUM This Month

A malicious user could leverage this vulnerability to escalate privileges or perform unauthorized actions in the context of the targeted privileged users. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Ey As525F001 Firmware
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

An authenticated malicious user could successfully upload a malicious image could lead to a denial-of-service condition. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload Ey As525F001 Firmware
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

An unauthenticated remote attacker could provide a malicious link and trick an unsuspecting user into clicking on it. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Ey As525F001 Firmware
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

An authenticated malicious user could acquire the simple mail transfer protocol (SMTP) Password in cleartext format, despite it being protected and hidden behind asterisks. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Ey As525F001 Firmware
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

An unauthenticated remote attacker could force all authenticated users, such as administrative users, to perform unauthorized actions by viewing the logs. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation XSS Ey As525F001 Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy