CVE-2020-5727

CVE-2020-5727 affects SimpliSafe SS3 with firmware version 1.4. The issue is an authentication bypass via an alternate path/channel that lets a local, unauthenticated attacker pair a rogue keypad to an armed system. The publicly available documents confirm the vulnerability details but do not pro...

CVE-2019-3998

Authentication bypass using an alternate path or channel in SimpliSafe SS3 firmware 1.4 allows a local, unauthenticated attacker to modify the Wi-Fi network the base station connects to...

Authentication flaw

Authentication bypass using an alternate path or channel in SimpliSafe SS3 firmware 1.4 allows a local, unauthenticated attacker to modify the Wi-Fi network the base station connects to...

Moxa OnCell G3100-HSPA Cross-Site Request Forgery Vulnerability

Moxa OnCell G3100-HSPA is a G3100-HSPA series cellular network gateway device from Moxa, Taiwan, China. A cross-site request forgery vulnerability exists in the DE WEB application in Moxa OnCell G3100-HSPA 1.4 Build 16062919 and prior firmware versions, which stems from the WEB application not...

Security Bulletin: Vulnerability in the IBM FlashSystem model V840

Summary There is a vulnerability to which the FlashSystem™ V840 is susceptible. An exploit of this vulnerability could make the system subject to an attack allowing an escalation of privilege. Only systems with 1.4 firmware installed are vulnerable. Vulnerability Details CVEID: CVE-2018-1822...

Design/Logic Flaw

Moxa OnCell Gateway G3111, G3151, G3211, and G3251 devices with firmware before 1.4 do not use a sufficient source of entropy for SSH and SSL keys, which makes it easier for remote attackers to obtain access by leveraging knowledge of a key from a product installation elsewhere...