Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Ic Module Cma Security Vulnerabilities - January

cve
cve

CVE-2021-21901

A stack-based buffer overflow vulnerability exists in the CMA check_udp_crc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to memcpy. An attacker can send a malicious packet to trigger this vulnerabi...

8.8CVSS

8.8AI Score

0.001EPSS

2021-12-22 07:15 PM
30
2
cve
cve

CVE-2021-21902

An authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authentication bypass via session hijacking. An attacker can send a sequence of requests to trigger this vulne...

8.1CVSS

8.1AI Score

0.004EPSS

2021-12-22 07:15 PM
30
3
cve
cve

CVE-2021-21903

A stack-based buffer overflow vulnerability exists in the CMA check_udp_crc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to strcpy. An attacker can send a malicious packet to trigger this vulnerabi...

9.8CVSS

9.5AI Score

0.003EPSS

2021-12-22 07:15 PM
32
cve
cve

CVE-2021-21904

A directory traversal vulnerability exists in the CMA CLI setenv command of Garrett Metal Detectors’ iC Module CMA Version 5.0. An attacker can provide malicious input to trigger this vulnerability

7.2CVSS

7.1AI Score

0.001EPSS

2021-12-22 07:15 PM
30
2
cve
cve

CVE-2021-21905

Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations. The Garrett iC Module exposes an authenticated CLI over TCP port 6877. This interface is used by a secondary GUI client, called “CMA C...

7.2CVSS

7.3AI Score

0.001EPSS

2021-12-22 07:15 PM
34
cve
cve

CVE-2021-21906

Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations. The Garrett iC Module exposes an authenticated CLI over TCP port 6877. This interface is used by a secondary GUI client, called “CMA C...

7.2CVSS

7.3AI Score

0.001EPSS

2021-12-22 07:15 PM
29
cve
cve

CVE-2021-21907

A directory traversal vulnerability exists in the CMA CLI getenv command functionality of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted command line argument can lead to local file inclusion. An attacker can provide malicious input to trigger this vulnerability.

4.9CVSS

5.4AI Score

0.001EPSS

2021-12-22 07:15 PM
29