24 matches found
CVE-2026-21411
Authentication bypass issue exists in OpenBlocks series versions prior to FW5.0.8, which may allow an attacker to bypass administrator authentication and change the password...
Authentication bypass vulnerability in OpenBlocks series
Overview OpenBlocks series provided by Plat'Home Co.,Ltd. contains the following vulnerability. Authentication bypass CWE-288 - CVE-2026-21411 Chuya Hayakawa of 00One, Inc. reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the developer. Impact An attacker could bypass...
CVE-2026-21411
Authentication bypass issue exists in OpenBlocks series versions prior to FW5.0.8, which may allow an attacker to bypass administrator authentication and change the password...
CVE-2026-21411
Authentication bypass issue exists in OpenBlocks series versions prior to FW5.0.8, which may allow an attacker to bypass administrator authentication and change the password...
CVE-2026-21411
CVE-2026-21411 affects Plat’Home OpenBlocks series (OpenBlocks IoT VX2) prior to FW5.0.8. Root cause: authentication bypass vulnerability allowing a user to bypass administrator authentication and change passwords. Impact is high (unauthenticated access to change credentials; confidentiality, int...
CVE-2026-21411
Authentication bypass issue exists in OpenBlocks series versions prior to FW5.0.8, which may allow an attacker to bypass administrator authentication and change the password...
PT-2026-1418
Name of the Vulnerable Software and Affected Versions OpenBlocks versions prior to 5.0.8 Description An authentication bypass issue exists that may allow an attacker to bypass administrator authentication and change the password. Recommendations Update to version 5.0.8 or later...
Plat’Home OpenBlocks IoT VX2 安全漏洞
Plat'home Plat'Home OpenBlocks IoT VX2 is an IoT gateway device from Plat'home Japan. A security vulnerability exists in the Plat'Home OpenBlocks IoT VX2 that stems from an authentication bypass that could allow an attacker to bypass administrator authentication and change the password...
EUVD-2020-26698
Malware in sbrugna...
EUVD-2020-26697
Malware in sbrugna...
CVE-2020-5536
OpenBlocks IoT VX2 prior to Ver.4.0.0 Ver.3 Series allows an attacker on the same network segment to bypass authentication and to initialize the device via unspecified vectors...
CVE-2020-5535
OpenBlocks IoT VX2 prior to Ver.4.0.0 Ver.3 Series allows an attacker on the same network segment to execute arbitrary OS commands with root privileges via unspecified vectors...
CVE-2020-5535
OpenBlocks IoT VX2 prior to Ver.4.0.0 Ver.3 Series allows an attacker on the same network segment to execute arbitrary OS commands with root privileges via unspecified vectors...
CVE-2020-5536
OpenBlocks IoT VX2 prior to Ver.4.0.0 Ver.3 Series allows an attacker on the same network segment to bypass authentication and to initialize the device via unspecified vectors...
CVE-2020-5535
OpenBlocks IoT VX2 prior to Ver.4.0.0 Ver.3 Series allows an attacker on the same network segment to execute arbitrary OS commands with root privileges via unspecified vectors...
CVE-2020-5536
OpenBlocks IoT VX2 prior to Ver.4.0.0 Ver.3 Series allows an attacker on the same network segment to bypass authentication and to initialize the device via unspecified vectors...
Design/Logic Flaw
OpenBlocks IoT VX2 prior to Ver.4.0.0 Ver.3 Series allows an attacker on the same network segment to execute arbitrary OS commands with root privileges via unspecified vectors...
Authentication flaw
OpenBlocks IoT VX2 prior to Ver.4.0.0 Ver.3 Series allows an attacker on the same network segment to bypass authentication and to initialize the device via unspecified vectors...
CVE-2020-5536
OpenBlocks IoT VX2 prior to Ver.4.0.0 Ver.3 Series allows an attacker on the same network segment to bypass authentication and to initialize the device via unspecified vectors...
CVE-2020-5536
OpenBlocks IoT VX2 prior to Ver.4.0.0 (Ver.3 Series) contains an authentication bypass vulnerability (CVE-2020-5536) due to improper authentication. An attacker on the same network segment may bypass authentication and initialize the device via unspecified vectors. Affected firmware: VX2 before 4...