Lucene search
+L

65 matches found

CNVD
CNVD
added 2022/02/10 12:0 a.m.17 views

Sealevel Systems SeaConnect 370W File Writing Vulnerability

Sealevel Systems SeaConnect 370W is an Industrial Internet of Things Iiot edge device from Sealevel Systems, Inc. The Sealevel Systems SeaConnect 370W is vulnerable to a file-write vulnerability, which stems from the fact that the product's OTA update task feature does not effectively restrict...

8.3CVSS3.1AI score0.00952EPSS
Exploits1References1
CNVD
CNVD
added 2022/02/10 12:0 a.m.38 views

Sealevel Systems SeaConnect 370W Buffer Overflow Vulnerability (CNVD-2022-10700)

Sealevel Systems SeaConnect 370W is an Industrial Internet of Things Iiot edge device from Sealevel Systems, Inc. A buffer overflow vulnerability exists in Sealevel Systems SeaConnect 370W, which stems from the product's OTA Update u-download feature that does not effectively limit memory...

9CVSS5.3AI score0.0201EPSS
Exploits1References1
NVD
NVD
added 2022/02/04 11:15 p.m.25 views

CVE-2021-21962

A heap-based buffer overflow vulnerability exists in the OTA Update u-download functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A series of specially-crafted MQTT payloads can lead to remote code execution. An attacker must perform a man-in-the-middle attack in order to trigger th...

9CVSS0.0201EPSS
Exploits1References1
NVD
NVD
added 2022/02/04 11:15 p.m.15 views

CVE-2021-21968

A file write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to arbitrary file overwrite. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

8.3CVSS0.00952EPSS
Exploits1References1
OSV
OSV
added 2022/02/04 11:15 p.m.5 views

CVE-2021-21962

A heap-based buffer overflow vulnerability exists in the OTA Update u-download functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A series of specially-crafted MQTT payloads can lead to remote code execution. An attacker must perform a man-in-the-middle attack in order to trigger th...

8.1CVSS7.8AI score0.0201EPSS
Exploits1References1
Prion
Prion
added 2022/02/04 11:15 p.m.20 views

Heap overflow

A heap-based buffer overflow vulnerability exists in the OTA Update u-download functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A series of specially-crafted MQTT payloads can lead to remote code execution. An attacker must perform a man-in-the-middle attack in order to trigger th...

6.8CVSS8.4AI score0.0201EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/02/04 11:15 p.m.17 views

Arbitrary file deletion

A file write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to arbitrary file overwrite. An attacker can perform a man-in-the-middle attack to trigger this vulnerability...

6.8CVSS8.2AI score0.00952EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/02/04 10:29 p.m.63 views

CVE-2021-21962

The provided connected documents confirm a heap-based buffer overflow in SeaConnect 370W (v1.3.34) OTA Update u-download, triggered by specially crafted MQTT payloads over a MITM position. The root cause involves the ParseToDownloadMessage path where unescape allocates a small heap buffer and une...

9CVSS8.4AI score0.0201EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/04 10:29 p.m.23 views

CVE-2021-21962

A heap-based buffer overflow vulnerability exists in the OTA Update u-download functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A series of specially-crafted MQTT payloads can lead to remote code execution. An attacker must perform a man-in-the-middle attack in order to trigger th...

9CVSS8.6AI score0.0201EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/02/04 10:29 p.m.11 views

CVE-2021-21962

A heap-based buffer overflow vulnerability exists in the OTA Update u-download functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A series of specially-crafted MQTT payloads can lead to remote code execution. An attacker must perform a man-in-the-middle attack in order to trigger th...

9CVSS8.6AI score0.0201EPSS
Exploits1References1
CVE
CVE
added 2022/02/04 10:29 p.m.59 views

CVE-2021-21968

CVE-2021-21968 affects Sealevel Systems SeaConnect 370W v1.3.34. The OTA update task allows a specially crafted MQTT payload to overwrite arbitrary files due to improper input validation in the OTA download logic (notably the dest field can create/open any file). This can enable a MITM attacker t...

8.3CVSS8.1AI score0.00952EPSS
Exploits1References1Affected Software1
Talos
Talos
added 2022/02/01 12:0 a.m.52 views

Sealevel Systems, Inc. SeaConnect 370W OTA Update "u-download" heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the OTA Update u-download functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A series of specially-crafted MQTT payloads can lead to remote code execution. An attacker must perform a man-in-the-middle attack in order to...

9CVSS8.6AI score0.0201EPSS
Exploits1
CNNVD
CNNVD
added 2022/02/01 12:0 a.m.5 views

Sealevel Systems SeaConnect 370W 安全漏洞

Sealevel Systems SeaConnect 370W is an Industrial Internet of Things Iiot edge device from Sealevel Systems, Inc. The Sealevel Systems SeaConnect 370W is vulnerable to a file-write vulnerability, which stems from the fact that the product's OTA update task feature does not effectively restrict...

8.3CVSS5.5AI score0.00952EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/02/01 12:0 a.m.6 views

Sealevel Systems SeaConnect 370W 缓冲区错误漏洞

Sealevel Systems SeaConnect 370W is an Industrial Internet of Things Iiot edge device from Sealevel Systems, Inc. It is used to remotely monitor and control the status of actual I/O processes. A buffer error vulnerability exists in the Sealevel Systems SeaConnect 370W, which stems from the...

7.1CVSS6.7AI score0.00733EPSS
Exploits1References3
OSV
OSV
added 2021/09/29 5:9 p.m.38 views

GHSA-48MJ-P7X2-5JFM Basic auth bypass in esphome

Impact Anyone with webserver enabled and HTTP basic auth configured on 2021.9.1 or older webserver allows OTA update without checking user defined basic auth username & password Patches Patch released in 2021.9.2 Workarounds Disable/remove webserver...

8.7CVSS7.5AI score0.01175EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2021/09/29 5:9 p.m.41 views

Basic auth bypass in esphome

Impact Anyone with webserver enabled and HTTP basic auth configured on 2021.9.1 or older webserver allows OTA update without checking user defined basic auth username & password Patches Patch released in 2021.9.2 Workarounds Disable/remove webserver...

7.5CVSS1.4AI score0.01175EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2021/09/28 3:15 p.m.29 views

CVE-2021-41104 web_server allows OTA update without checking user defined basic auth username & password

ESPHome is a system to control the ESP8266/ESP32. Anyone with webserver enabled and HTTP basic auth configured on version 2021.9.1 or older is vulnerable to an issue in which webserver allows over-the-air OTA updates without checking user defined basic auth username & password. This issue is...

7.5CVSS7.6AI score0.01175EPSS
Exploits0References3
Pen Test Partners Blog
Pen Test Partners Blog
added 2019/07/26 1:40 p.m.292 views

Vehicle Telematics Security; getting it right

We spend a LOT of time looking at vehicle telematics security, sometimes on client projects but mostly doing vanilla research on telematics components that we’ve bought ourselves, or investigating our own vehicles. We have a pile of vehicle TCUs here that’s several feet high, plus a couple of...

4.9CVSS6AI score0.00204EPSS
Exploits0
NVD
NVD
added 2018/07/13 8:29 p.m.16 views

CVE-2016-6564

Android devices with code from Ragentek contain a privileged binary that performs over-the-air OTA update checks. Additionally, there are multiple techniques used to hide the execution of this binary. This behavior could be described as a rootkit. This binary, which resides as /system/bin/debugs,...

9.3CVSS8.3AI score0.02659EPSS
Exploits1References3
Cvelist
Cvelist
added 2018/07/13 8:0 p.m.22 views

CVE-2016-6564 Ragentek Android software contains an over-the-air update mechanism that communicates over an unencrypted channel, which can allow a remote attacker to execute arbitrary code with root privileges

Android devices with code from Ragentek contain a privileged binary that performs over-the-air OTA update checks. Additionally, there are multiple techniques used to hide the execution of this binary. This behavior could be described as a rootkit. This binary, which resides as /system/bin/debugs,...

8.3AI score0.02659EPSS
Exploits1References3
Rows per page
Query Builder