CVE-2020-10581

Invigo Automatic Device Management (ADM) up to version 5.0 contains multiple session validity check issues in several administration functions. The Red Hat/CVE, NVD, CNVD, CVE listings and related advisories describe a vulnerability that could allow remote attackers to read potentially sensitive ...

CVE-2020-10582

CVE-2020-10582 describes a SQL injection in Invigo Automatic Device Management (ADM) prior to or including version 5.0, affecting the script at /admin/display_errors.php. The underlying issue allows remote attackers to execute arbitrary SQL queries against the database, with potential data readin...

CVE-2020-10582

A SQL injection on the /admin/displayerrors.php script of Invigo Automatic Device Management ADM through 5.0 allows remote attackers to execute arbitrary SQL requests including data reading and modification on the database...

CVE-2020-10583

CVE-2020-10583 affects Invigo Automatic Device Management (ADM) up to version 5.0. The vulnerability is an arbitrary OS command injection in the /admin/admapi.php script, exploitable by remote authenticated attackers who execute commands on the server as the application user. This is documented a...

CVE-2020-10584

CVE-2020-10584 is a directory traversal vulnerability affecting Invigo Automatic Device Management (ADM) via the /admin/search_by.php script, reported for ADM 5.0 and earlier. The root cause is directory traversal that allows remote attackers to read arbitrary files on the server accessible to th...

PT-2021-9155 · Invigo · Invigo Automatic Device Management

Name of the Vulnerable Software and Affected Versions: Invigo Automatic Device Management ADM versions through 5.0 Description: A command injection issue in the /admin/broadcast.php script allows remote authenticated attackers to execute arbitrary PHP code on the server as the user running the...

Invigo Automatic Device Management SQL注入漏洞

Invigo Automatic Device Management ADM is a native management tool for cellular operators that enables them to detect, maintain and manage millions of devices cost-effectively and with a high degree of reliability. A SQL injection vulnerability exists in /admin/displayerrors.php in Invigo Automat...

Invigo Automatic Device Management 安全漏洞

Invigo Automatic Device Management ADM is a native management tool for cellular operators that enables them to detect, maintain and manage millions of devices cost-effectively and with a high degree of reliability. A session validity check vulnerability exists in several management functions in...

Invigo Automatic Device Management 路径遍历漏洞

Invigo Automatic Device Management ADM is a native management tool for cellular operators that enables them to detect, maintain and manage millions of devices cost-effectively and with a high degree of reliability. A directory traversal vulnerability exists in /admin/sysmon.php in Invigo Automati...