Skip to main content

Web Viewer

5 CVEs product

Monthly

CVE-2021-32572 HIGH POC This Week

Speco Web Viewer through 2021-05-12 allows Directory Traversal via GET request for a URI with /.. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Web Viewer
NVD
CVSS 3.1
7.5
EPSS
1.7%
CVE-2017-16524 HIGH POC THREAT Act Now

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices suffers from an Unrestricted file upload vulnerability: 'network_ssl_upload.php' allows remote authenticated attackers to upload and execute. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 74.7%.

Samsung PHP File Upload Web Viewer
NVD GitHub Exploit-DB
CVSS 3.0
8.8
EPSS
74.7%
Threat
5.5
CVE-2015-8281 HIGH This Week

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Samsung Authentication Bypass Web Viewer
NVD
CVSS 3.0
7.5
EPSS
0.1%
CVE-2015-8280 HIGH This Week

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials by reading detailed error messages. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Samsung Information Disclosure Web Viewer
NVD
CVSS 3.0
7.5
EPSS
0.8%
CVE-2015-8279 HIGH POC THREAT Act Now

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to read arbitrary files via a request to an unspecified PHP script. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 67.9%.

PHP Privilege Escalation Samsung Web Viewer
NVD
CVSS 3.0
8.6
EPSS
67.9%
Threat
5.3
EPSS 2% CVSS 7.5
HIGH POC This Week

Speco Web Viewer through 2021-05-12 allows Directory Traversal via GET request for a URI with /.. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Web Viewer
NVD
EPSS 75% 5.5 CVSS 8.8
HIGH POC THREAT Act Now

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices suffers from an Unrestricted file upload vulnerability: 'network_ssl_upload.php' allows remote authenticated attackers to upload and execute. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 74.7%.

Samsung PHP File Upload +1
NVD GitHub Exploit-DB
EPSS 0% CVSS 7.5
HIGH This Week

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Samsung Authentication Bypass Web Viewer
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials by reading detailed error messages. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Samsung Information Disclosure Web Viewer
NVD
EPSS 68% 5.3 CVSS 8.6
HIGH POC THREAT Act Now

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to read arbitrary files via a request to an unspecified PHP script. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 67.9%.

PHP Privilege Escalation Samsung +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy