PT-2024-22451 · Byzoro Networks · Byzoro Networks Smart Multi-Service Security Gateway Intelligent Management Platform

Name of the Vulnerable Software and Affected Versions: Byzoro Networks Smart multi-service security gateway intelligent management platform version S210 Description: The issue allows an attacker to obtain sensitive information via the uploadfile.php component. This is a result of a File Upload...

CVE-2024-28520

File Upload vulnerability in Byzoro Networks Smart multi-service security gateway intelligent management platform version S210, allows an attacker to obtain sensitive information via the uploadfile.php component...

CVE-2023-5493

A vulnerability has been found in Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /useratte/web.php. The manipulation of the argument fileupload leads t...

Command injection

A vulnerability was found in Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928 and classified as critical. Affected by this issue is some unknown functionality of the file /log/download.php. The manipulation of the argument file leads to os...

Out-of-bounds

A vulnerability has been found in Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /useratte/web.php. The manipulation of the argument fileuploa...

CVE-2023-5494

Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform (versions up to 20230928) contains an OS command injection vulnerability in the /log/download.php endpoint. The issue arises from manipulating the file argument, allowing remote exploitation. Public disclosures exist (...

CVE-2023-5492 Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform licence.php unrestricted upload

A vulnerability, which was classified as critical, was found in Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928. Affected is an unknown function of the file /sysmanage/licence.php. The manipulation of the argument fileupload leads to unrestricted...

CVE-2023-5491 Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform updatelib.php unrestricted upload

A vulnerability, which was classified as critical, has been found in Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928. This issue affects some unknown processing of the file /sysmanage/updatelib.php. The manipulation of the argument fileupload leads to...

CVE-2023-5491

CVE-2023-5491 affects Byzoro Smart S45F and Beijing Baichuo Smart S45F Multi-Service Secure Gateway platforms up to 20230928. A vulnerability in /sysmanage/updatelib.php, specifically the file_upload argument, allows unrestricted upload. The issue can be triggered remotely and an exploit has been...

CVE-2023-4873

The CVE-2023-4873 entry concerns Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform (up to 20230906). Affects an unknown function in /importexport.php where manipulating the sql argument triggers an OS command injection. Exploitation can be carried out remotely, and pu...

CVE-2023-4745

CVE-2023-4745 concerns Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform (up to 20230822). Multiple sources confirm a vulnerability in the unknown functionality of /importexport.php that leads to SQL injection. The issue can be triggered remotely over the network and ...

Command Execution Vulnerability in PatrolFlow Multi-Service Security Gateway Intelligent Management Platform of Byzoro Networks (CNVD-2022-38233)

hereinafter referred to as Byzoro Networks is a high-tech enterprise dedicated to building a next-generation secure Internet. Byzoro Networks PatrolFlow multi-service security gateway intelligent management platform has a command execution vulnerability, which can be exploited by attackers to...

SQL Injection Vulnerability in PatrolFlow Multiservice Security Gateway Intelligent Management Platform of Byzoro Networks

Beijing Byzoro Network Technology Co., Ltd. is a high-tech enterprise dedicated to building the next-generation secure Internet. A SQL injection vulnerability exists in the PatrolFlow multi-service security gateway intelligent management platform of Byzoro Networks, which can be exploited by...

Command Execution Vulnerability in PatrolFlow Multiservice Security Gateway Intelligent Management Platform of Byzoro Networks (CNVD-2021-51332)

Beijing Byzoro Network Technology Co., Ltd. is a high-tech enterprise dedicated to building the next-generation secure Internet. A command execution vulnerability exists in the PatrolFlow multi-service security gateway intelligent management platform of Byzoro Networks, which can be exploited by...

File Upload Vulnerability in PatrolFlow Multiservice Security Gateway Intelligent Management Platform of Byzoro Networks (CNVD-2021-51415)

Beijing Byzoro Network Technology Co., Ltd. is a high-tech enterprise dedicated to building the next-generation secure Internet. A file upload vulnerability exists in the PatrolFlow multi-service security gateway intelligent management platform of Byzoro Networks, which can be exploited by an...

Unauthorized Access Vulnerability in Byzoro Networks Smart Multiservice Security Gateway Intelligent Management Platform (CNVD-2021-46898)

Beijing Byzoro Networks Technology Co., Ltd hereinafter referred to as Byzoro Networks is a high-tech enterprise dedicated to building the next-generation secure Internet. An unauthorized access vulnerability exists in Byzoro's Smart Multi-service Security Gateway Intelligent Management Platform...

Command Execution Vulnerability in Byzoro Networks Smart Multiservice Security Gateway Intelligent Management Platform (CNVD-2021-46259)

Beijing Byzoro Networks Technology Co., Ltd hereinafter referred to as Byzoro Networks is a high-tech enterprise dedicated to building the next-generation secure Internet. A command execution vulnerability exists in the Smart Multi-service Security Gateway intelligent management platform of Byzor...

Logic Flaw Vulnerability in Byzoro Networks Smart Multi-service Security Gateway Intelligent Management Platform

Beijing Byzoro Networks Technology Co., Ltd hereinafter referred to as Byzoro Networks is a high-tech enterprise dedicated to building the next-generation secure Internet. A logic flaw vulnerability exists in Byzoro's Smart Multi-service Security Gateway Intelligent Management Platform. Attackers...

Unauthorized Access Vulnerability in Byzoro Networks Smart Multiservice Security Gateway Intelligent Management Platform

Beijing Byzoro Networks Technology Co., Ltd hereinafter referred to as Byzoro Networks is a high-tech enterprise dedicated to building the next-generation secure Internet. An unauthorized access vulnerability exists in Byzoro's Smart Multi-service Security Gateway Intelligent Management Platform...

CVE-2019-5356

A remote code execution vulnerability was identified in HPE Intelligent Management Center IMC PLAT earlier than version 7.3 E0506P09...