Prima FlexAir Access Control 2.3.38 - Remote Code Execution

Exploit Title: Prima FlexAir Access Control 2.3.38 - Remote Code Execution Google Dork: NA Date: 2018-09-06 Exploit Author: LiquidWorm Vendor Homepage: https://www.primasystems.eu/ Software Link: https://primasystems.eu/flexair-access-control/ Version: 2.3.38 Tested on: NA CVE : CVE-2019-7670...

Prima FlexAir Access Control 2.3.35 Database Backup Predictable Name

!/usr/bin/env python -- coding: utf8 -- Prima FlexAir Access Control 2.3.35 Database Backup Predictable Name Exploit Authentication Bypass Login with MD5 hash CVE: CVE-2019-7666, CVE-2019-7667 Advisory: https://applied-risk.com/resources/ar-2019-007 Paper:...

Prima FlexAir Access Control 2.3.38 - Remote Code Execution Exploit

Exploit for hardware platform in category web applications Exploit Title: Prima FlexAir Access Control 2.3.38 - Remote Code Execution Exploit Author: LiquidWorm Vendor Homepage: https://www.primasystems.eu/ Software Link: https://primasystems.eu/flexair-access-control/ Version: 2.3.38 Tested on: ...

FlexAir Access Control 2.3.38 Remote Root

!/usr/bin/env python Authenticated Remote Root Exploit for Prima FlexAir Access Control 2.3.38 via Command Injection in SetNTPServer request, Server parameter. CVE: CVE-2019-7670 Advisory: https://applied-risk.com/resources/ar-2019-007 Paper:...

Prima FlexAir Access Control 2.3.38 - Remote Code Execution

Prima FlexAir Access Control 2.3.38 - Remote Code Execution Exploit Title: Prima FlexAir Access Control 2.3.38 - Remote Code Execution Google Dork: NA Date: 2018-09-06 Exploit Author: LiquidWorm Vendor Homepage: https://www.primasystems.eu/ Software Link:...

Prima FlexAir MD5 Hash Authentication Vulnerability

Prima Systems FlexAir is an access control system from Prima Systems in Slovenia. An MD5 hash authentication vulnerability exists in Prima FlexAir version 2.3.38 and earlier. An attacker can exploit the vulnerability to complete authentication directly using MD5 hashing...

Prima FlexAir Command Injection Vulnerability (CNVD-2019-21068)

Prima Systems FlexAir is an access control system from Prima Systems in Slovenia. A command injection vulnerability exists in Prima FlexAir version 2.3.38 and earlier. A remote, unauthenticated attacker can exploit the vulnerability to execute code as Root...

Prima FlexAir Default Credentials Vulnerability

Prima Systems FlexAir is an access control system from Prima Systems in Slovenia. A default credentials vulnerability exists in Prima FlexAir version 2.3.38 and earlier. An attacker can exploit the vulnerability to obtain the default password and identify a networked target system...

Prima FlexAir Database Configuration Backup Download Vulnerability

Prima Systems FlexAir is an access control system from Prima Systems in Slovenia. A database configuration backup download vulnerability exists in Prima FlexAir version 2.3.38 and earlier. The vulnerability stems from a predictable file name. An attacker could exploit the vulnerability to downloa...

Prima FlexAir Command Injection Vulnerability

Prima Systems FlexAir is an access control system from Prima Systems in Slovenia. A command injection vulnerability exists in Prima FlexAir version 2.3.38 and earlier. A remote authenticated attacker can exploit the vulnerability to execute code as Root...