CVE-2018-19025

In JUUKO K-808, an attacker could specially craft a packet that encodes an arbitrary command, which could be executed on the K-808 Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc...

EUVD-2018-10743

Malware in sbrugna...

EUVD-2018-9673

Malware in sbrugna...

CVE-2018-17932

JUUKO K-800 Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc. is vulnerable to a replay attack and command forgery, which could allow attackers to replay commands, control the device, view commands, or cause the device to stop running...

Juuko DATA Packet Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to issue commands on vulnerable installations of Juuko equipment. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of communication between the transmitter and receiver. By using a fixed control...

CVE-2018-19025

In JUUKO K-808, an attacker could specially craft a packet that encodes an arbitrary command, which could be executed on the K-808 Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc...

CVE-2018-17932

JUUKO K-800 Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc. is vulnerable to a replay attack and command forgery, which could allow attackers to replay commands, control the device, view commands, or cause the device to stop running...

Command injection

In JUUKO K-808, an attacker could specially craft a packet that encodes an arbitrary command, which could be executed on the K-808 Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc...

Command injection

JUUKO K-800 Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc. is vulnerable to a replay attack and command forgery, which could allow attackers to replay commands, control the device, view commands, or cause the device to stop running...

CVE-2018-17932

CVE-2018-17932 affects JUUKO K-800 (JUUKO Industrial Radio Remote Control). Affected firmware versions prior to the ending formats …9A, …9B, …9C are vulnerable to a replay attack and command forgery (authentication bypass by capture-replay). This could allow attackers to replay commands, view com...

CVE-2018-17932

JUUKO K-800 Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc. is vulnerable to a replay attack and command forgery, which could allow attackers to replay commands, control the device, view commands, or cause the device to stop running...

CVE-2018-19025

CVE-2018-19025 affects JUUKO K-808 (and related JUUKO hardware). A vulnerability exists in the handling of radio data between transmitter and receiver that allows an attacker to craft a packet encoding an arbitrary command, enabling command injection on vulnerable installations. Red Hat/ZDI and I...

CVE-2018-19025

In JUUKO K-808, an attacker could specially craft a packet that encodes an arbitrary command, which could be executed on the K-808 Firmware versions prior to numbers ending ...9A, ...9B, ...9C, etc...

SHUN HU Technology JUUKO Industrial Radio Remote Control

1. EXECUTIVE SUMMARY CVSS v3 8.3 ATTENTION: Exploitable from an adjacent network/low skill level to exploit Vendor: SHUN HU Technology Co., Ltd Equipment: JUUKO Industrial Radio Remote Control Vulnerabilities: Authentication Bypass by Capture-replay, Command Injection 2. RISK EVALUATION...

(0Day) Juuko JK-800 Replay Attack Vulnerability

This vulnerability allows remote attackers to issue commands on vulnerable installations of Juuko equipment. Authentication is not required to exploit this vulnerability. The specific flaw exists with the communication between the transmitter and receiver pair. By using a fixed control code, an...