Archive avril 2019

PubliéBaseTempVulnerability0dayTodayExpConCTICVE
30/04/20198.58.3Crestron AM-100/AM-101 Web Interface authentification faible$0-$5k$0-$5kNot DefinedWorkaround0.04CVE-2019-3939
30/04/20196.56.5Crestron AM-100/AM-101 Configuration File authentification faible$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-3938
30/04/20196.56.5Crestron AM-100/AM-101 scfgdndf Credentials elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-3937
30/04/20196.46.2Crestron AM-100/AM-101 Service Port 389 elévation de privilèges$0-$5k$0-$5kNot DefinedWorkaround0.03CVE-2019-3936
30/04/20197.47.2Crestron AM-100/AM-101 Slie Show conference.cgi authentification faible$0-$5k$0-$5kNot DefinedWorkaround0.09CVE-2019-3935
30/04/20195.35.2Crestron AM-100/AM-101 login.cgi elévation de privilèges$0-$5k$0-$5kNot DefinedWorkaround0.06CVE-2019-3934
30/04/20195.35.2Crestron AM-100/AM-101 browserslide.jpg elévation de privilèges$0-$5k$0-$5kNot DefinedWorkaround0.06CVE-2019-3933
30/04/20198.58.3Crestron AM-100/AM-101 return.tgi authentification faible$0-$5k$0-$5kNot DefinedWorkaround0.00CVE-2019-3932
30/04/20198.88.6Crestron AM-100/AM-101 cURL return.cgi elévation de privilèges$0-$5k$0-$5kNot DefinedWorkaround0.04CVE-2019-3931
30/04/20199.99.7Crestron AM-100/AM-101 libAwgCgi.so PARSERtoCHAR buffer overflow$0-$5k$0-$5kNot DefinedWorkaround0.00CVE-2019-3930
30/04/20199.89.6Crestron AM-100/AM-101 HTTP Endpoint file_transfer.cgi elévation de privilèges$0-$5k$0-$5kNot DefinedWorkaround0.02CVE-2019-3929
30/04/20196.36.2Crestron AM-100/AM-101 SNMP divulgation de l'information$0-$5k$0-$5kNot DefinedWorkaround0.12CVE-2019-3928
30/04/20198.58.3Crestron AM-100/AM-101 SNMP elévation de privilèges$0-$5k$0-$5kNot DefinedWorkaround0.00CVE-2019-3927
30/04/20199.89.6Crestron AM-100/AM-101 SNMP elévation de privilèges$0-$5k$0-$5kNot DefinedWorkaround0.08CVE-2019-3926
30/04/20199.89.6Crestron AM-100/AM-101 SNMP elévation de privilèges$0-$5k$0-$5kNot DefinedWorkaround0.06CVE-2019-3925
30/04/20198.58.2signing-party gpg-key2ps elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2019-11627
30/04/20195.35.3doorGets ajaxRouter.php Path directory traversal$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11626
30/04/20194.84.8doorGets emailingRequest.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11625
30/04/20194.34.3doorGets configurationRequest.php elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11624
30/04/20194.84.8doorGets configurationRequest.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11623
30/04/20194.84.8doorGets modulecategoryRequest.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2019-11622
30/04/20194.84.8doorGets configurationRequest.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-11621
30/04/20194.84.8doorGets modulecategoryRequest.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2019-11620
30/04/20194.84.8doorGets configurationRequest.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-11619
30/04/20198.58.5doorGets Access Token index.php elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2019-11618
30/04/20197.07.0doorGets configurationRequest.php cross site request forgery$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2019-11617
30/04/20197.57.5doorGets admin.php Password elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-11616
30/04/20197.57.5doorGets File Upload upload.php elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.06CVE-2019-11615
30/04/20197.47.4doorGets commentView.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11614
30/04/20196.46.4doorGets contactView.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-11613

Interested in the pricing of exploits?

See the underground prices here!