Command injection

Command Injection in EntoneWebEngine in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows authenticated remote attackers to execute arbitrary commands with root user privileges...

Hardcoded credentials

Use of a Hard-coded Password in VNCserver in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows local attackers to view and interact with the video output of the device...

CVE-2020-10208

CVE-2020-10208 affects Amino Communications EntoneWebEngine used in AK45x, AK5xx, AK65x, Aria6xx, Aria7/AK7Xx series, and Kami7B. The vulnerability is a command-injection flaw that allows an authenticated remote attacker to execute arbitrary commands with root privileges. The initial sources spec...

Hardcoded credentials

Use of Hard-coded Credentials in EntoneWebEngine in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows remote attackers to retrieve and modify the device settings...