Skip to main content

Sd 320An Firmware

2 CVEs product

Monthly

CVE-2018-6021 HIGH This Week

Silex SD-320AN version 2.01 and prior and GE MobileLink(GEH-SD-320AN) version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection Sd 320An Firmware Geh Sd 320An Firmware
NVD
CVSS 3.0
7.4
EPSS
1.3%
CVE-2018-6020 MEDIUM This Month

In Silex SX-500 all versions and GE MobileLink(GEH-500) version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Sd 320An Firmware Geh Sd 320An Firmware Geh 500 Firmware Sx 500 Firmware
NVD
CVSS 3.0
6.5
EPSS
1.1%
EPSS 1% CVSS 7.4
HIGH This Week

Silex SD-320AN version 2.01 and prior and GE MobileLink(GEH-SD-320AN) version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection Sd 320An Firmware +1
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

In Silex SX-500 all versions and GE MobileLink(GEH-500) version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Sd 320An Firmware Geh Sd 320An Firmware +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy