Lucene search

Via Go2 Firmware Security Vulnerabilities

cve

CVE-2023-33468

KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 exhibit a vulnerability that enables remote manipulation of the device. This vulnerability involves extracting the connection confirmation code remotely, bypassing the need to obtain it directly from the physical scr...

9.1CVSS

8.9AI Score

0.001EPSS

2023-08-09 08:15 PM

cve

CVE-2023-33469

In instances where the screen is visible and remote mouse connection is enabled, KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 can be exploited to achieve local code execution at the root level.

7.8CVSS

7.8AI Score

0.0004EPSS

2023-08-09 08:15 PM

cve

CVE-2023-33507

KramerAV VIA GO² < 4.0.1.1326 is vulnerable to Unauthenticated arbitrary file read.

7.5CVSS

7.4AI Score

0.001EPSS

2023-05-31 01:15 PM

cve

CVE-2023-33508

KramerAV VIA GO² < 4.0.1.1326 is vulnerable to unauthenticated file upload resulting in Remote Code Execution (RCE).

9.8CVSS

9.6AI Score

0.007EPSS

2023-05-31 01:15 PM

cve

CVE-2023-33509

KramerAV VIA GO² < 4.0.1.1326 is vulnerable to SQL Injection.

9.8CVSS

9.4AI Score

0.001EPSS

2023-05-31 01:15 PM