CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

CNVD•added 2021/01/04 12:0 a.m.•6 views

Amino Communications Command Injection Vulnerability

The Amino Communications AK45x series is a family of television set-top box devices from Amino UK. Amino Communications suffers from a command injection vulnerability that can be exploited by an authenticated, remote attacker to execute arbitrary commands with root user privileges...

9.9CVSS8.3AI score0.08336EPSS

Exploits1References1

CNVD•added 2021/01/04 12:0 a.m.•8 views

Amino Communications Command Injection Vulnerability (CNVD-2021-29989)

The Amino Communications AK45x series is a family of television set-top box devices from Amino UK. Amino Communications suffers from a command injection vulnerability that can be exploited by an attacker to execute arbitrary commands with root-level privileges...

9.3CVSS8.2AI score0.0313EPSS

Exploits1References1

Prion•added 2020/12/30 12:15 a.m.•13 views

Command injection

Command Injection in EntoneWebEngine in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows authenticated remote attackers to execute arbitrary commands with root user privileges...

9CVSS9.8AI score0.08336EPSS

Exploits1References1

Prion•added 2020/12/30 12:15 a.m.•10 views

Hardcoded credentials

Use of a Hard-coded Password in VNCserver in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows local attackers to view and interact with the video output of the device...

3.6CVSS4.7AI score0.00043EPSS

Exploits1References1

CNNVD•added 2020/12/30 12:0 a.m.•1 views

Amino Communications 命令注入漏洞

9.9CVSS6.1AI score0.08336EPSS

Exploits1References1

CNNVD•added 2020/12/30 12:0 a.m.•3 views

多款Amino产品信任管理问题漏洞

The Amino Communications AK45x series, among others, is a family of television set-top box devices from Amino UK. Amino Communications has a trust management issue vulnerability that stems from the use of hard-coded passwords, which can be exploited by a local attacker to view and interact with t...

4.4CVSS5.8AI score0.00043EPSS

Exploits1References1

CVE•added 2020/12/29 11:41 p.m.•64 views

CVE-2020-10208

CVE-2020-10208 affects Amino Communications EntoneWebEngine used in AK45x, AK5xx, AK65x, Aria6xx, Aria7/AK7Xx series, and Kami7B. The vulnerability is a command-injection flaw that allows an authenticated remote attacker to execute arbitrary commands with root privileges. The initial sources spec...

9.9CVSS9.8AI score0.08336EPSS

Exploits1References1Affected Software1

Prion•added 2020/12/29 11:15 p.m.•6 views

Hardcoded credentials

Use of Hard-coded Credentials in EntoneWebEngine in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows remote attackers to retrieve and modify the device settings...

10CVSS9.3AI score0.03958EPSS

Exploits1References1

CVE•added 2020/12/29 10:10 p.m.•43 views

CVE-2020-10210

CVE-2020-10210 affects Amino Communications devices including AK45x, AK5xx, AK65x, Aria6xx, Aria7/AK7Xx, and Kami7B. The root cause is a hard-coded SSH key for the root user, which may allow an attacker to log in remotely via SSH. The public documents state this vulnerability enables remote SSH a...

10CVSS9.4AI score0.00455EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by