20 matches found
EUVD-2023-27678
Malicious code in bioql PyPI...
EUVD-2023-27984
Malicious code in bioql PyPI...
CVE-2023-22441
Missing authentication for critical function exists in Seiko Solutions SkyBridge series, which may allow a remote attacker to obtain or alter the setting information of the product or execute some critical functions without authentication, e.g., rebooting the product. Affected products and versio...
CVE-2023-23578
Improper access control vulnerability in SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier allows a remote unauthenticated attacker to connect to the product's ADB port...
VulnCheck KEV: CVE-2022-36559
Seiko SkyBridge MB-A200 v01.00.04 and below was discovered to contain a command injection vulnerability via the Ping parameter at pingexec.cgi...
VulnCheck KEV: CVE-2022-36560
Seiko SkyBridge MB-A200 v01.00.04 and below was discovered to contain multiple hard-coded passcodes for root. Attackers are able to access the passcodes at /etc/srapi/config/system.conf and /usr/sbin/ssol-sshd.sh...
CVE-2023-23578
Improper access control vulnerability in SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier allows a remote unauthenticated attacker to connect to the product's ADB port...
CVE-2023-23578
Improper access control vulnerability in SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier allows a remote unauthenticated attacker to connect to the product's ADB port...
CVE-2023-23901
Improper following of a certificate's chain of trust exists in SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier, and SkyBridge BASIC MB-A130 firmware Ver. 1.4.1 and earlier, which may allow a remote unauthenticated attacker to eavesdrop on or alter the communication sent to the WebUI of the...
CVE-2023-22441
Missing authentication for critical function exists in Seiko Solutions SkyBridge series, which may allow a remote attacker to obtain or alter the setting information of the product or execute some critical functions without authentication, e.g., rebooting the product. Affected products and versio...
Improper access control
Improper access control vulnerability in SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier allows a remote unauthenticated attacker to connect to the product's ADB port...
CVE-2023-23901
CVE-2023-23901 affects Seiko Solutions SkyBridge MB-A200 firmware (01.00.05 and earlier) and SkyBridge BASIC MB-A130 firmware (1.4.1 and earlier). Root cause: improper following of a certificate’s chain of trust. Impact: remote unauthenticated attacker may eavesdrop on or alter communications sen...
CVE-2023-23578
Improper access control vulnerability in SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier allows a remote unauthenticated attacker to connect to the product's ADB port...
PT-2023-19291 · Unknown · Skybridge Mb-A200 +1
Name of the Vulnerable Software and Affected Versions: SkyBridge MB-A200 versions 01.00.05 and earlier SkyBridge BASIC MB-A130 versions 1.4.1 and earlier Description: The issue is related to an improper following of a certificate's chain of trust, which may allow a remote unauthenticated attacker...
CVE-2023-23578
Improper access control vulnerability in SkyBridge MB-A200 firmware Ver. 01.00.05 and earlier allows a remote unauthenticated attacker to connect to the product's ADB port...
CVE-2023-23578
CVE-2023-23578 affects Seiko SkyBridge MB-A200 firmware (01.00.05 and earlier): a remote unauthenticated attacker could connect to the device’s ADB port due to improper access control. Public references confirm this CVE is tied to MB-A200 and related SkyBridge variants. Remediation per the connec...
CVE-2022-36559
Seiko SkyBridge MB-A200 v01.00.04 and below was discovered to contain a command injection vulnerability via the Ping parameter at pingexec.cgi...
CVE-2022-36559
Seiko SkyBridge MB-A200 v01.00.04 and below was discovered to contain a command injection vulnerability via the Ping parameter at pingexec.cgi...
CVE-2022-36559
CVE-2022-36559 is a command-injection vulnerability in Seiko SkyBridge SkySpider MB-A200 (and related MB-A100/110 series per connected records) via the Ping parameter in ping_exec.cgi. Affected firmware for MB-A200 is 01.00.04 and earlier; the issue enables a remote attacker to execute OS command...
Seiko Solutions SkyBridge MB-A200 信任管理问题漏洞
The Seiko Solutions SkyBridge MB-A200 is a multi-carrier LTE-compatible IoT router from Seiko Solutions, Japan. A security vulnerability exists in Seiko Solutions SkyBridge MB-A200 version v01.00.04 and earlier versions, which originates from multiple hardcoded passwords containing root...