Skip to main content

Jh Rv11 Firmware

7 CVEs product

Monthly

CVE-2024-23789 HIGH This Week

Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary OS command on the affected. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Command Injection Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2024-23788 HIGH This Week

Server-side request forgery vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to send an. Rated high severity (CVSS 8.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

SSRF Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
CVSS 3.1
8.1
EPSS
0.8%
CVE-2024-23787 MEDIUM This Month

Path traversal vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to obtain an arbitrary. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Path Traversal Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
CVSS 3.1
6.5
EPSS
0.9%
CVE-2024-23786 CRITICAL Act Now

Cross-site scripting vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
CVSS 3.1
9.3
EPSS
0.8%
CVE-2024-23785 MEDIUM This Month

Cross-site request forgery vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a remote unauthenticated attacker to change the product. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
CVSS 3.1
6.5
EPSS
0.4%
CVE-2024-23784 MEDIUM This Month

Improper access control vulnerability exists in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier, which may allow a network-adjacent unauthenticated attacker. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
CVSS 3.1
6.5
EPSS
0.4%
CVE-2024-23783 HIGH This Week

Improper authentication vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to access the. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.5%
EPSS 1% CVSS 8.8
HIGH This Week

Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary OS command on the affected. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Command Injection Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
EPSS 1% CVSS 8.1
HIGH This Week

Server-side request forgery vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to send an. Rated high severity (CVSS 8.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

SSRF Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

Path traversal vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to obtain an arbitrary. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Path Traversal Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
EPSS 1% CVSS 9.3
CRITICAL Act Now

Cross-site scripting vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

Cross-site request forgery vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a remote unauthenticated attacker to change the product. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

Improper access control vulnerability exists in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier, which may allow a network-adjacent unauthenticated attacker. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Jh Rvb1 Firmware Jh Rv11 Firmware
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Improper authentication vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to access the. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Jh Rvb1 Firmware Jh Rv11 Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy