CVE-2012-5861

These Sinapsi devices do not check the validity of the data beforeexecuting queries. By accessing the SQL table of certain pages that donot require authentication within the device, attackers can leakinformation from the device. This could allow the attacker to compromiseconfidentiality.