72 matches found
CVE-2018-6408
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. CSRF exists in hy-cgi/user.cgi, as demonstrated by changing an administrator password or adding a new administrator account...
CVE-2018-6407
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. An unauthenticated attacker can crash a device by sending a POST request with a huge body size to /hy-cgi/devices.cgi?cmd=searchlandevice. The crash completely freezes the device...
EUVD-2018-18165
Malware in sbrugna...
EUVD-2014-1485
Malware in sbrugna...
EUVD-2013-6987
Malware in sbrugna...
EUVD-2014-1483
Malware in sbrugna...
EUVD-2014-1482
Malware in sbrugna...
EUVD-2004-2037
Malware in sbrugna...
EUVD-2014-1484
Malware in sbrugna...
CVE-2018-6407
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. An unauthenticated attacker can crash a device by sending a POST request with a huge body size to /hy-cgi/devices.cgi?cmd=searchlandevice. The crash completely freezes the device...
CVE-2018-6407
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. An unauthenticated attacker can crash a device by sending a POST request with a huge body size to /hy-cgi/devices.cgi?cmd=searchlandevice. The crash completely freezes the device...
Cross site request forgery (csrf)
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. CSRF exists in hy-cgi/user.cgi, as demonstrated by changing an administrator password or adding a new administrator account...
Code injection
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. An unauthenticated attacker can crash a device by sending a POST request with a huge body size to /hy-cgi/devices.cgi?cmd=searchlandevice. The crash completely freezes the device...
CVE-2018-6408
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. CSRF exists in hy-cgi/user.cgi, as demonstrated by changing an administrator password or adding a new administrator account...
CVE-2018-6408
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. CSRF exists in hy-cgi/user.cgi, as demonstrated by changing an administrator password or adding a new administrator account...
CVE-2018-6407
An issue was discovered on Conceptronic CIPCAMPTIWL V3 0.61.30.21 devices. An unauthenticated attacker can crash a device by sending a POST request with a huge body size to /hy-cgi/devices.cgi?cmd=searchlandevice. The crash completely freezes the device...
CVE-2018-6408
The CVE-2018-6408 entry concerns Conceptronic CIPCAMPTIWL V3 devices (firmware 0.61.30.21) with a Cross-Site Request Forgery flaw in the hy-cgi/user.cgi endpoint. The root cause is CSRF on the admin management page, enabling an attacker to change an administrator password or add a new administrat...
CVE-2018-6407
CVE-2018-6407 affects Conceptronic CIPCAMPTIWL V3 0.61.30.21. An unauthenticated attacker can crash the device by sending a POST request with an excessively large body to /hy-cgi/devices.cgi?cmd=searchlandevice, causing the device to freeze. Multiple sources (NVD, Red Hat, CNVD, CVE records) desc...
Conceptronic Grab’n’Go Network Storage Directory Traversal
No description provided by source. Security Advisory AA-003: Directory Traversal Vulnerability in Conceptronic Grab’n’Go Network Storage Severity Rating: High Discovery Date: July 29, 2012 Vendor Notification: July 30, 2012 Disclosure Date: September 3, 2012 Vulnerability Type= Directory Traversa...
Conceptronic Grab’n’Go and Sitecom Storage Center Password Disclosure
No description provided by source. Updated to include Sitecom MD-253 and MD254 Minor textual changes == Conceptronic Grab’n’Go and Sitecom Storage Center - Password disclosure Vulnerability - Security Advisory AA-002 Severity Rating: High Discovery Date: May 5, 2012 Vendor Notification: May 31,...