CVE-2019-16732

creationtimestamp| type| source ---|---|--- 2024-03-11 17:16:53+00:00| seen| https://t.me/ctinow/204870...

CVE-2020-16732

CVE-2020-16732 is rejected/not used; this candidate is not associated with an active vulnerability entry.

CVE-2019-16732

The CVE-2019-16732 entry describes an unencrypted HTTP channel for firmware upgrades in Petalk AI and PF-103, enabling a man-in-the-middle to inject and execute arbitrary code with root privileges. Affected components are the firmware upgrade process on Petalk AI and PF-103 devices; root cause is...

CVE-2018-16732

\upload\plugins\sys\admin\Setting.php in CScms 4.1 allows CSRF via admin.php/setting/ftpsave...

CVE-2018-16732

CVE-2018-16732 affects CScms 4.1. The flaw is in \upload\plugins\sys\admin\Setting.php, enabling CSRF via admin.php/setting/ftp_save. CVSS data: v2 base 6.8 (NETWORK, no auth, partial CIA/I/A), and CVSSv3 base 8.8 (NETWORK, UI REQUIRED, HIGH impact on Confidentiality, Integrity, Availability). Co...

CVE-2017-16732

CVE-2017-16732 affects Advantech WebAccess prior to version 8.3. It is a use-after-free vulnerability allowing an unauthenticated attacker to specify an arbitrary address, potentially crashing the device or enabling further impact. The incident is documented across multiple sources (NVD/NV D summ...