CVE-2018-15819
EasyIO EasyIO-30P devices before 2.0.5.27 have Incorrect Access Control, related to webuser.js.
7.5CVSS
7.5AI Score
0.003EPSS
CVE-2018-15820
EasyIO EasyIO-30P devices before 2.0.5.27 allow XSS via the dev.htm GDN parameter.
6.1CVSS
6AI Score
0.01EPSS