27 matches found
CVE-2021-20067
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication...
CVE-2021-20069
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the regionalSettings.php dialogs...
CVE-2021-20070
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the virtualization.php dialogs...
CVE-2021-20072
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to arbitrarily access and delete files via an authenticated directory traveral...
CVE-2021-20074
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows users to escape the provided command line interface and execute arbitrary OS commands...
CVE-2021-20071
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the sms.php dialogs...
CVE-2021-20067
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication...
CVE-2021-20068
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the error handling functionality of web pages...
Cross site scripting
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the error handling functionality of web pages...
Cross site scripting
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the regionalSettings.php dialogs...
Cross site scripting
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the virtualization.php dialogs...
Cross site scripting
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the sms.php dialogs...
Cross site scripting
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows for cross-site request forgeries...
CVE-2021-20072
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to arbitrarily access and delete files via an authenticated directory traveral...
CVE-2021-20072
CVE-2021-20072 affects RACOM MIDGE firmware 4.4.40.105. The vulnerability is a directory traversal flaw in the firmware that, when authenticated, allows an attacker to arbitrarily access and delete files. Public risk details indicate high impact on confidentiality, integrity, and availability. Co...
CVE-2021-20071
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the sms.php dialogs...
CVE-2021-20071
CVE-2021-20071 affects RACOM MIDGE firmware 4.4.40.105. The vulnerability is a cross-site scripting (XSS) issue exploitable via the sms.php dialogs in the device’s web interface. The provided documents consistently describe the issue as an XSS vulnerability but do not provide technical details ab...
CVE-2021-20070
CVE-2021-20070: Racom MIDGE Firmware 4.4.40.105 is affected by a cross-site scripting (XSS) vulnerability via the virtualization.php dialogs. The issue enables attackers to inject/execute JavaScript in the affected web interface. Root cause details are not provided beyond the XSS description; no ...
CVE-2021-20075
CVE-2021-20075 affects RACOM MIDGE firmware 4.4.40.105. The connected sources consistently describe an elevation of privilege via the configd component in this firmware version. The precise root cause is not elaborated beyond mentioning privilege escalation through configd, and no official remedi...
CVE-2021-20074
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows users to escape the provided command line interface and execute arbitrary OS commands...