cbcvebase.

Getvera Veraedge Firmware vulnerabilities

12 known vulnerabilities affecting getvera/veraedge_firmware.

Total CVEs
12
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH6MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2017-9389P2HIGHCVSS 8.8≤ 1.7.192019-06-17
CVE-2017-9389 [HIGH] CWE-287 CVE-2017-9389: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the device allows a user to install applications written in the Lua programming language. Also the interface allows any user to write his/her application in the Lua
nvd
CVE-2017-9385P3CRITICALCVSS 9.8≤ 1.7.192019-06-17
CVE-2017-9385 [CRITICAL] CWE-255 CVE-2017-9385: An issue was discovered on Vera Veralite 1.7.481 devices. The device has an additional OpenWRT inter An issue was discovered on Vera Veralite 1.7.481 devices. The device has an additional OpenWRT interface in addition to the standard web interface which allows the highest privileges a user can obtain on the device. This web interface uses root as the username and the password in the /etc/cmh/cmh.conf file which can be extracted by an attacker using
nvd
CVE-2017-9383P3CRITICALCVSS 9.9≤ 1.7.192019-06-17
CVE-2017-9383 [CRITICAL] CWE-287 CVE-2017-9383: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UP An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/port_3480". It seems that the UPnP services provide "wget" as one of the service actions for a normal user to connect the device to an external website. I
nvd
CVE-2017-9392P3HIGHCVSS 8.8≤ 1.7.192019-06-17
CVE-2017-9392 [HIGH] CWE-119 CVE-2017-9392: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UP An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/port_3480". It seems that the UPnP services provide "request_image" as one of the service actions for a normal user to retrieve an image from a camera that is
nvd
CVE-2017-9391P3HIGHCVSS 8.8≤ 1.7.192019-06-17
CVE-2017-9391 [HIGH] CWE-119 CVE-2017-9391: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UP An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/port_3480". It seems that the UPnP services provide "request_image" as one of the service actions for a normal user to retrieve an image from a camera that is
nvd
CVE-2017-9388P3HIGHCVSS 8.8≤ 1.7.192019-06-17
CVE-2017-9388 [HIGH] CWE-77 CVE-2017-9388: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the device firmware file contains a file known as proxy.sh which allows the device to proxy a specific request to and from from another website. This is primarily use
nvd
CVE-2017-9384P3HIGHCVSS 8.8≤ 1.7.192019-06-17
CVE-2017-9384 [HIGH] CWE-77 CVE-2017-9384: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the device firmware file contains a file known as relay.sh which allows the device to create relay ports and connect the device to Vera servers. This is primarily use
nvd
CVE-2017-9386P3MEDIUMCVSS 6.5≤ 1.7.192019-06-17
CVE-2017-9386 [MEDIUM] CWE-22 CVE-2017-9386: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a script file called "get_file.sh" which allows a user to retrieve any file stored in the "cmh-ext" folder on the device. However, the "filename" parameter is not validated correctly and this allows an attacker to directory traverse outside the /cmh-ext fol
nvd
CVE-2017-9381P3HIGHCVSS 8.8≤ 1.7.192019-06-17
CVE-2017-9381 [HIGH] CWE-352 CVE-2017-9381: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a user with the capability of installing or deleting apps on the device using the web management interface. It seems that the device does not implement any cross-site request forgery protection mechanism which allows an attacker to trick a user who navigates
nvd
CVE-2017-9382P3MEDIUMCVSS 6.5≤ 1.7.192019-06-17
CVE-2017-9382 [MEDIUM] CWE-22 CVE-2017-9382: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UP An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/port_3480". It seems that the UPnP services provide "file" as one of the service actions for a normal user to read a file that is stored under the /etc/cmh-l
nvd
CVE-2017-9390P4MEDIUMCVSS 6.1≤ 1.7.192019-06-17
CVE-2017-9390 [MEDIUM] CWE-79 CVE-2017-9390: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a shell script called connect.sh which is supposed to return a specific cookie for the user when the user is authenticated to https://home.getvera.com. One of the parameters retrieved by this script is "RedirectURL". However, the application lacks strict in
nvd
CVE-2017-9387P4MEDIUMCVSS 5.4≤ 1.7.192019-06-17
CVE-2017-9387 [MEDIUM] CWE-79 CVE-2017-9387: An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a shell script called relay.sh which is used for creating new SSH relays for the device so that the device connects to Vera servers. All the parameters passed in this specific script are logged to a log file called log.relay in the /tmp folder. The user can
nvd
Getvera Veraedge Firmware vulnerabilities | cvebase