Byzoro Smart S85F Firmware vulnerabilities
4 known vulnerabilities affecting byzoro/smart_s85f_firmware.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
CRITICAL3MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-5683P1CRITICALCVSS 9.8Exploited≤ 2023-10-102023-10-21
CVE-2023-5683 [CRITICAL] CWE-78 CVE-2023-5683: A vulnerability was found in Byzoro Smart S85F Management Platform up to 20231010 and classified as
A vulnerability was found in Byzoro Smart S85F Management Platform up to 20231010 and classified as critical. This issue affects some unknown processing of the file /sysmanage/importconf.php. The manipulation of the argument btn_file_renew leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public
nvd
CVE-2023-5684P2CRITICALCVSS 9.8≤ 2023-10-122023-10-21
CVE-2023-5684 [CRITICAL] CWE-78 CVE-2023-5684: A vulnerability was found in Byzoro Smart S85F Management Platform up to 20231012. It has been decla
A vulnerability was found in Byzoro Smart S85F Management Platform up to 20231012. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /importexport.php. The manipulation leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used
nvd
CVE-2023-4739P2CRITICALCVSS 9.8≤ 202308202023-09-03
CVE-2023-4739 [CRITICAL] CWE-434 CVE-2023-4739: A vulnerability, which was classified as critical, has been found in Byzoro Smart S85F Management Pl
A vulnerability, which was classified as critical, has been found in Byzoro Smart S85F Management Platform up to 20230820. Affected by this issue is some unknown functionality of the file /sysmanage/updateos.php. The manipulation of the argument 1_file_upload leads to unrestricted upload. The attack may be launched remotely. The exploit has been dis
nvd
CVE-2023-5959P4MEDIUMCVSS 4.3vv31r02b10-012023-11-11
CVE-2023-5959 [MEDIUM] CWE-640 CVE-2023-5959: A vulnerability, which was classified as problematic, was found in Byzoro Smart S85F Management Plat
A vulnerability, which was classified as problematic, was found in Byzoro Smart S85F Management Platform V31R02B10-01. Affected is an unknown function of the file /login.php. The manipulation of the argument txt_newpwd leads to weak password recovery. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is
nvd