4 matches found
EUVD-2021-27592
Malicious code in bioql PyPI...
CVE-2021-40413
An incorrect default permission vulnerability exists in the cgiserver.cgi cgicheckability functionality of reolink RLC-410W v3.0.0.13620121102. The UpgradePrepare is the API that checks if a provided filename identifies a new version of the RLC-410W firmware. If the version is new, it would be...
CVE-2021-40414
The CVE-2021-40414 issue affects Reolink RLC-410W (v3.0.0.136_20121102) where the cgiserver.cgi cgi_check_ability function lacks specific cases for certain API commands. As a result, a non-administrative user permission value of 7 can grant access to a broad set of APIs (e.g., SetMdAlarm, Upgrade...
Windows 2000 system partition weak default permissions
Everyone/Full Control permission allows to change initiall boot files regardless of individual file permissions...