Skip to main content

Semac S3V3 Firmware

5 CVEs product

Monthly

CVE-2021-31252 MEDIUM POC THREAT This Month

An open redirect vulnerability exists in BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, and SEMAC devices from CHIYU Technology that can be exploited by sending a link that has a. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Open Redirect Bf 430 Firmware Bf 431 Firmware Bf 450M Firmware Semac S2 Firmware +10
NVD
CVSS 3.1
6.1
EPSS
28.6%
CVE-2021-31251 CRITICAL POC THREAT Act Now

An authentication bypass in telnet server in BF-430 and BF431 232/422 TCP/IP Converter, BF-450M and SEMAC from CHIYU Technology Inc allows obtaining a privileged connection with the target device by. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Bf 430 Firmware Bf 431 Firmware Bf 450M Firmware Semac S2 Firmware +6
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
35.7%
CVE-2021-31643 MEDIUM POC THREAT This Month

An XSS vulnerability exists in several IoT devices from CHIYU Technology, including SEMAC, Biosense, BF-630, BF-631, and Webpass due to a lack of sanitization on the component if.cgi - username. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bf 631 Firmware Bf 630 Firmware Semac S2 Firmware Semac D1 Firmware +7
NVD
CVSS 3.1
5.4
EPSS
88.4%
CVE-2021-31642 MEDIUM POC THREAT This Month

A denial of service condition exists after an integer overflow in several IoT devices from CHIYU Technology, including BIOSENSE, Webpass, and BF-630, BF-631, and SEMAC. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Denial Of Service Semac S2 Firmware Semac D1 Firmware Semac D2 Firmware +8
NVD Exploit-DB
CVSS 3.1
6.5
EPSS
43.7%
CVE-2021-31641 MEDIUM POC This Month

An unauthenticated XSS vulnerability exists in several IoT devices from CHIYU Technology, including BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, BF-MINI-W, and SEMAC due to a lack of. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bf 430 Firmware Bf 431 Firmware Bf 450M Firmware Semac S2 Firmware +11
NVD
CVSS 3.1
6.1
EPSS
5.1%
EPSS 29% CVSS 6.1
MEDIUM POC THREAT This Month

An open redirect vulnerability exists in BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, and SEMAC devices from CHIYU Technology that can be exploited by sending a link that has a. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Open Redirect Bf 430 Firmware Bf 431 Firmware +12
NVD
EPSS 36% CVSS 9.8
CRITICAL POC THREAT Act Now

An authentication bypass in telnet server in BF-430 and BF431 232/422 TCP/IP Converter, BF-450M and SEMAC from CHIYU Technology Inc allows obtaining a privileged connection with the target device by. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Bf 430 Firmware Bf 431 Firmware +8
NVD Exploit-DB
EPSS 88% CVSS 5.4
MEDIUM POC THREAT This Month

An XSS vulnerability exists in several IoT devices from CHIYU Technology, including SEMAC, Biosense, BF-630, BF-631, and Webpass due to a lack of sanitization on the component if.cgi - username. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bf 631 Firmware Bf 630 Firmware +9
NVD
EPSS 44% CVSS 6.5
MEDIUM POC THREAT This Month

A denial of service condition exists after an integer overflow in several IoT devices from CHIYU Technology, including BIOSENSE, Webpass, and BF-630, BF-631, and SEMAC. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Denial Of Service Semac S2 Firmware +10
NVD Exploit-DB
EPSS 5% CVSS 6.1
MEDIUM POC This Month

An unauthenticated XSS vulnerability exists in several IoT devices from CHIYU Technology, including BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, BF-MINI-W, and SEMAC due to a lack of. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bf 430 Firmware Bf 431 Firmware +13
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy