Lucene search
K

12 matches found

CNVD
CNVD
added 2020/11/09 12:0 a.m.5 views

Verve Connect VH510 Trust Management Issue Vulnerability

The Verve Connect VH510 is a hub for home applications from Verve Connect UK. The device regenerates and shapes and amplifies the received signal to extend the transmission distance of the network while concentrating all nodes on the node centered on it. A security vulnerability exists in version...

9.8CVSS7.3AI score0.0217EPSS
Exploits1References1
CNVD
CNVD
added 2020/11/09 12:0 a.m.2 views

Verve Connect VH510 Cross-Site Request Forgery Vulnerability

The Verve Connect VH510 is a hub for home applications from Verve Connect UK. The device regenerates and shapes and amplifies the received signal to extend the transmission distance of the network while concentrating all nodes on the node centered on it. Verve Connect VH510 has a cross-site reque...

8.8CVSS7.1AI score0.00542EPSS
Exploits1References1
CNVD
CNVD
added 2020/11/09 12:0 a.m.5 views

Verve Connect VH510 Cross-Site Scripting Vulnerability

The Verve Connect VH510 is a hub for home applications from Verve Connect UK. The device regenerates and shapes and amplifies the received signals to extend the transmission distance of the network while concentrating all the nodes in the node centered on it. A cross-site scripting vulnerability...

6.1CVSS6.2AI score0.00749EPSS
Exploits1References1
CNVD
CNVD
added 2020/11/05 12:0 a.m.5 views

Verve Connect VH510 Buffer Overflow Vulnerability

The Verve Connect VH510 is a hub for home applications from Verve Connect UK. The device regenerates and shapes and amplifies the received signal to extend the transmission distance of the network while concentrating all nodes on the node centered on it. A buffer overflow vulnerability exists in...

5.5CVSS7.3AI score0.00418EPSS
Exploits1References1
OSV
OSV
added 2020/11/04 9:15 p.m.2 views

CVE-2020-27692

The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 contains multiple CSRF vulnerabilities within its web management portal. Attackers can, for example, use this to update the TR-069 configuration server settings responsible for managing devices remotely. This makes it possibl...

8.8CVSS7.3AI score
Exploits0References2
OSV
OSV
added 2020/11/04 9:15 p.m.4 views

CVE-2020-27691

The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 allows XSS via URLBlocking Settings, SNMP Settings, and System Log Settings...

6.1CVSS6.4AI score0.00749EPSS
Exploits1References2
OSV
OSV
added 2020/11/04 9:15 p.m.4 views

CVE-2020-27690

The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 contains a buffer overflow within its web management portal. When a POST request is sent to /boaform/admin/formDOMAINBLK with a large blkDomain value, the Boa server crashes...

5.5CVSS6.5AI score
Exploits0References2
OSV
OSV
added 2020/11/04 8:15 p.m.2 views

CVE-2020-27689

The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 contains undocumented default admin credentials for the web management interface. A remote attacker could exploit this vulnerability to login and execute commands on the device, as well as upgrade the firmware image to a...

9.8CVSS7.4AI score0.0217EPSS
Exploits1References2
Prion
Prion
added 2020/11/04 8:15 p.m.14 views

Design/Logic Flaw

The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 contains undocumented default admin credentials for the web management interface. A remote attacker could exploit this vulnerability to login and execute commands on the device, as well as upgrade the firmware image to a...

5CVSS9.5AI score0.0217EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2020/11/04 8:10 p.m.64 views

CVE-2020-27691

The CVE-2020-27691 entry concerns the Verve Connect VH510 (Relish) gateway. Affected firmware versions prior to 1.0.1.6L0516 are vulnerable to cross-site scripting (XSS) via the device’s UI settings pages: URLBlocking, SNMP, and System Log settings. The root cause is an input handling flaw in the...

6.1CVSS5.9AI score0.00749EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2020/11/04 8:6 p.m.52 views

CVE-2020-27690

CVE-2020-27690 affects the Relish (Verve Connect) VH510 hub. A buffer overflow in the Boa web server exists on firmware prior to 1.0.1.6L0516, triggered by a POST to /boaform/admin/formDOMAINBLK with a large blkDomain value, which can crash the Boa service and impact availability. Public document...

5.5CVSS5.8AI score0.00418EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2020/11/04 8:1 p.m.49 views

CVE-2020-27689

The CVE concerns the Verve Connect VH510 (Relish) device. Firmware prior to 1.0.1.6L0516 contains undocumented default admin credentials in the web management interface. A remote attacker could log in, execute commands on the device, and upgrade the firmware image to a malicious version. Affected...

9.8CVSS9.5AI score0.0217EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder