Archiv April 2019

VeröffentlichtBaseTempSchwachstelle0dayTodayExpMasCTICVE
30.04.20198.58.3Crestron AM-100/AM-101 Web Interface schwache Authentisierung$0-$5k$0-$5kNot DefinedWorkaround0.04CVE-2019-3939
30.04.20196.56.5Crestron AM-100/AM-101 Configuration File schwache Authentisierung$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-3938
30.04.20196.56.5Crestron AM-100/AM-101 scfgdndf Credentials erweiterte Rechte$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-3937
30.04.20196.46.2Crestron AM-100/AM-101 Service Port 389 erweiterte Rechte$0-$5k$0-$5kNot DefinedWorkaround0.03CVE-2019-3936
30.04.20197.47.2Crestron AM-100/AM-101 Slie Show conference.cgi schwache Authentisierung$0-$5k$0-$5kNot DefinedWorkaround0.09CVE-2019-3935
30.04.20195.35.2Crestron AM-100/AM-101 login.cgi erweiterte Rechte$0-$5k$0-$5kNot DefinedWorkaround0.06CVE-2019-3934
30.04.20195.35.2Crestron AM-100/AM-101 browserslide.jpg erweiterte Rechte$0-$5k$0-$5kNot DefinedWorkaround0.06CVE-2019-3933
30.04.20198.58.3Crestron AM-100/AM-101 return.tgi schwache Authentisierung$0-$5k$0-$5kNot DefinedWorkaround0.00CVE-2019-3932
30.04.20198.88.6Crestron AM-100/AM-101 cURL return.cgi erweiterte Rechte$0-$5k$0-$5kNot DefinedWorkaround0.04CVE-2019-3931
30.04.20199.99.7Crestron AM-100/AM-101 libAwgCgi.so PARSERtoCHAR Pufferüberlauf$0-$5k$0-$5kNot DefinedWorkaround0.00CVE-2019-3930
30.04.20199.89.6Crestron AM-100/AM-101 HTTP Endpoint file_transfer.cgi erweiterte Rechte$0-$5k$0-$5kNot DefinedWorkaround0.02CVE-2019-3929
30.04.20196.36.2Crestron AM-100/AM-101 SNMP Information Disclosure$0-$5k$0-$5kNot DefinedWorkaround0.12CVE-2019-3928
30.04.20198.58.3Crestron AM-100/AM-101 SNMP erweiterte Rechte$0-$5k$0-$5kNot DefinedWorkaround0.00CVE-2019-3927
30.04.20199.89.6Crestron AM-100/AM-101 SNMP erweiterte Rechte$0-$5k$0-$5kNot DefinedWorkaround0.08CVE-2019-3926
30.04.20199.89.6Crestron AM-100/AM-101 SNMP erweiterte Rechte$0-$5k$0-$5kNot DefinedWorkaround0.06CVE-2019-3925
30.04.20198.58.2signing-party gpg-key2ps erweiterte Rechte$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2019-11627
30.04.20195.35.3doorGets ajaxRouter.php Path Directory Traversal$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11626
30.04.20194.84.8doorGets emailingRequest.php SQL Injection$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11625
30.04.20194.34.3doorGets configurationRequest.php erweiterte Rechte$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11624
30.04.20194.84.8doorGets configurationRequest.php SQL Injection$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11623
30.04.20194.84.8doorGets modulecategoryRequest.php SQL Injection$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2019-11622
30.04.20194.84.8doorGets configurationRequest.php SQL Injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-11621
30.04.20194.84.8doorGets modulecategoryRequest.php SQL Injection$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2019-11620
30.04.20194.84.8doorGets configurationRequest.php SQL Injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-11619
30.04.20198.58.5doorGets Access Token index.php erweiterte Rechte$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2019-11618
30.04.20197.07.0doorGets configurationRequest.php Cross Site Request Forgery$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2019-11617
30.04.20197.57.5doorGets admin.php Password erweiterte Rechte$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-11616
30.04.20197.57.5doorGets File Upload upload.php erweiterte Rechte$0-$5k$0-$5kNot DefinedNot Defined0.06CVE-2019-11615
30.04.20197.47.4doorGets commentView.php SQL Injection$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11614
30.04.20196.46.4doorGets contactView.php SQL Injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-11613

Do you want to use VulDB in your project?

Use the official API to access entries easily!