Byzoro Smart S20 Firmware vulnerabilities
2 known vulnerabilities affecting byzoro/smart_s20_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2023-6574P2HIGHCVSS 8.8≤ 2023-11-202023-12-07
CVE-2023-6574 [HIGH] CWE-434 CVE-2023-6574: A vulnerability was found in Byzoro Smart S20 up to 20231120 and classified as critical. Affected by
A vulnerability was found in Byzoro Smart S20 up to 20231120 and classified as critical. Affected by this issue is some unknown functionality of the file /sysmanage/updateos.php of the component HTTP POST Request Handler. The manipulation of the argument 1_file_upload leads to unrestricted upload. The attack may be launched remotely. The exploit has bee
nvd
CVE-2024-1254P3HIGHCVSS 7.2≤ 2023-11-202024-02-06
CVE-2024-1254 [HIGH] CWE-89 CVE-2024-1254: A vulnerability, which was classified as critical, was found in Byzoro Smart S20 Management Platform
A vulnerability, which was classified as critical, was found in Byzoro Smart S20 Management Platform up to 20231120. This affects an unknown part of the file /sysmanage/sysmanageajax.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used
nvd