Lucene search
K

5 matches found

OSV
OSV
added 2020/11/04 9:15 p.m.5 views

CVE-2020-27691

The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 allows XSS via URLBlocking Settings, SNMP Settings, and System Log Settings...

6.1CVSS6.4AI score0.00749EPSS
Exploits1References2
OSV
OSV
added 2020/11/04 9:15 p.m.3 views

CVE-2020-27692

The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 contains multiple CSRF vulnerabilities within its web management portal. Attackers can, for example, use this to update the TR-069 configuration server settings responsible for managing devices remotely. This makes it possibl...

8.8CVSS7.3AI score
Exploits0References2
OSV
OSV
added 2020/11/04 9:15 p.m.4 views

CVE-2020-27690

The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 contains a buffer overflow within its web management portal. When a POST request is sent to /boaform/admin/formDOMAINBLK with a large blkDomain value, the Boa server crashes...

5.5CVSS6.5AI score
Exploits0References2
OSV
OSV
added 2020/11/04 8:15 p.m.3 views

CVE-2020-27689

The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 contains undocumented default admin credentials for the web management interface. A remote attacker could exploit this vulnerability to login and execute commands on the device, as well as upgrade the firmware image to a...

9.8CVSS7.4AI score0.0217EPSS
Exploits1References2
CVE
CVE
added 2020/11/04 8:10 p.m.65 views

CVE-2020-27691

The CVE-2020-27691 entry concerns the Verve Connect VH510 (Relish) gateway. Affected firmware versions prior to 1.0.1.6L0516 are vulnerable to cross-site scripting (XSS) via the device’s UI settings pages: URLBlocking, SNMP, and System Log settings. The root cause is an input handling flaw in the...

6.1CVSS5.9AI score0.00749EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder