Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

38 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 11:23 a.m.4 views

CVE-2021-31643

An XSS vulnerability exists in several IoT devices from CHIYU Technology, including SEMAC, Biosense, BF-630, BF-631, and Webpass due to a lack of sanitization on the component if.cgi - username parameter...

5.4CVSS6.1AI score0.0381EPSS
Exploits4References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-18164

Malware in sbrugna...

6.1CVSS6.3AI score0.02868EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2021-18531

Malware in sbrugna...

5.4CVSS5.6AI score0.0381EPSS
Exploits4References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-18163

Malware in sbrugna...

9.8CVSS9.3AI score0.27519EPSS
Exploits5References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-18529

Malware in sbrugna...

6.1CVSS6.3AI score0.01159EPSS
Exploits4References6
NVD
NVDadded 2021/06/04 9:15 p.m.10 views

CVE-2021-31249

A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components...

6.5CVSS0.90442EPSS
Exploits4References3
NVD
NVDadded 2021/06/04 9:15 p.m.14 views

CVE-2021-31250

Multiple storage XSS vulnerabilities were discovered on BF-430, BF-431 and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of sanitization of the input on the components man.cgi, if.cgi, dhcpc.cgi, ppp.cgi...

5.4CVSS0.84453EPSS
Exploits4References3
Prion
Prionadded 2021/06/04 9:15 p.m.18 views

Crlf injection

A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components...

6.4CVSS6.5AI score0.90442EPSS
Exploits4References3
Prion
Prionadded 2021/06/04 9:15 p.m.11 views

Open redirect

An open redirect vulnerability exists in BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, and SEMAC devices from CHIYU Technology that can be exploited by sending a link that has a specially crafted URL to convince the user to click on it...

5.8CVSS6.2AI score0.02868EPSS
Exploits1References3
Prion
Prionadded 2021/06/04 9:15 p.m.18 views

Cross site scripting

Multiple storage XSS vulnerabilities were discovered on BF-430, BF-431 and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of sanitization of the input on the components man.cgi, if.cgi, dhcpc.cgi, ppp.cgi...

3.5CVSS5.6AI score0.84453EPSS
Exploits4References3
CVE
CVEadded 2021/06/04 8:29 p.m.138 views

CVE-2021-31249

CHIYU TCP/IP Converter BF-430, BF-431, and BF-450M devices are affected by CVE-2021-31249, a CRLF injection flaw stemming from insufficient validation of the redirect= parameter in multiple CGI components. Exploitation could lead to information disclosure, data modification, or unauthorized admin...

6.5CVSS6.5AI score0.90442EPSS
Exploits4References3Affected Software1
Cvelist
Cvelistadded 2021/06/04 8:29 p.m.17 views

CVE-2021-31249

A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components...

6.8AI score0.90442EPSS
Exploits4References3
CVE
CVEadded 2021/06/04 8:28 p.m.149 views

CVE-2021-31250

CHIYU TCP/IP Converter devices BF-430, BF-431 and BF-450M are affected by CVE-2021-31250 (XSS) due to insufficient input sanitization in several web components (man.cgi, if.cgi, dhcpc.cgi, ppp.cgi). Exploitation could allow a attacker to execute arbitrary JavaScript in a victim’s browser, with po...

5.4CVSS5.8AI score0.84453EPSS
In wildExploits4References3Affected Software1
Cvelist
Cvelistadded 2021/06/04 8:28 p.m.14 views

CVE-2021-31250

Multiple storage XSS vulnerabilities were discovered on BF-430, BF-431 and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of sanitization of the input on the components man.cgi, if.cgi, dhcpc.cgi, ppp.cgi...

5.9AI score0.84453EPSS
Exploits4References3
CVE
CVEadded 2021/06/04 8:21 p.m.76 views

CVE-2021-31252

The CVE-2021-31252 entry corresponds to an open redirect vulnerability in CHIYU Technology devices: BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, and SEMAC. According to the connected sources (NVD, CVE lists, CNNVD, PRION), the issue stems from an open redirect mechanism that can be...

6.1CVSS6.2AI score0.02868EPSS
Exploits1References3Affected Software1
CNNVD
CNNVDadded 2021/06/04 12:0 a.m.6 views

多款Chiyu产品注入漏洞

The Chiyu CHIYU BF-430, etc. are all networking servers that provide communication for access control, time and attendance systems, and other devices from Chiyu Technology Chiyu Inc. of Taiwan, China. A security vulnerability exists in CHIYU Technology Inc's BF-430, BF-431, and BF-450M TCP/IP...

6.5CVSS6.5AI score0.90442EPSS
Exploits4References3
Packet Storm
Packet Stormadded 2021/06/03 12:0 a.m.362 views

CHIYU IoT Denial Of Service

Exploit Title: CHIYU IoT Devices - Denial of Service DoS Date: 01/06/2021 Exploit Author: sirpedrotavares Vendor Homepage: https://www.chiyu-tech.com/msg/msg88.html Software Link: https://www.chiyu-tech.com/category-hardware.html Version: BIOSENSE, Webpass, and BF-630, BF-631, and SEMAC - all...

0.21354EPSS
Exploits4
Exploit DB
Exploit DBadded 2021/06/03 12:0 a.m.249 views

CHIYU IoT Devices - 'Telnet' Authentication Bypass

Exploit Title: CHIYU IoT Devices - 'Telnet' Authentication Bypass Date: 01/06/2021 Exploit Author: sirpedrotavares Vendor Homepage: https://www.chiyu-tech.com/msg/msg88.html Software Link: https://www.chiyu-tech.com/category-hardware.html Version: BF-430, BF-431, BF-450M, and SEMAC - all firmware...

9.8CVSS9.7AI score0.27519EPSS
Exploits5
CNNVD
CNNVDadded 2021/06/03 12:0 a.m.2 views

CHYUI 授权问题漏洞

The Chiyu CHIYU BF-430 is a networking server that provides communication for access control, time and attendance systems, and other devices from Chiyu Technology Chiyu of Taiwan, China. A security vulnerability exists in various CHIYU products, which stems from the fact that the remote login...

9.8CVSS8.3AI score0.27519EPSS
Exploits5References5
Packet Storm
Packet Stormadded 2021/06/03 12:0 a.m.206 views

CHIYU IoT Telnet Authentication Bypass

Exploit Title: CHIYU IoT Devices - 'Telnet' Authentication Bypass Date: 01/06/2021 Exploit Author: sirpedrotavares Vendor Homepage: https://www.chiyu-tech.com/msg/msg88.html Software Link: https://www.chiyu-tech.com/category-hardware.html Version: BF-430, BF-431, BF-450M, and SEMAC - all firmware...

0.2AI score0.27519EPSS
Exploits5
Rows per page
Query Builder