Lanner Inc Iac-Ast2500A vulnerabilities
13 known vulnerabilities affecting lanner_inc/iac-ast2500a.
Total CVEs
13
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH4MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2021-26728P2CRITICALCVSS 9.8v1.10.02022-10-24
CVE-2021-26728 [CRITICAL] CWE-94 CVE-2021-26728: Command injection and stack-based buffer overflow vulnerabilities in the KillDupUsr_func function of
Command injection and stack-based buffer overflow vulnerabilities in the KillDupUsr_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-26729P2CRITICALCVSS 9.8v1.10.02022-10-24
CVE-2021-26729 [CRITICAL] CWE-94 CVE-2021-26729: Command injection and multiple stack-based buffer overflows vulnerabilities in the Login_handler_fun
Command injection and multiple stack-based buffer overflows vulnerabilities in the Login_handler_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-26731P2CRITICALCVSS 9.8v1.10.02022-10-24
CVE-2021-26731 [CRITICAL] CWE-94 CVE-2021-26731: Command injection and multiple stack-based buffer overflows vulnerabilities in the modifyUserb_func
Command injection and multiple stack-based buffer overflows vulnerabilities in the modifyUserb_func function of spx_restservice allow an authenticated attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-26727P2CRITICALCVSS 9.8v1.10.02022-10-24
CVE-2021-26727 [CRITICAL] CWE-94 CVE-2021-26727: Multiple command injections and stack-based buffer overflows vulnerabilities in the SubNet_handler_f
Multiple command injections and stack-based buffer overflows vulnerabilities in the SubNet_handler_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-26730P3CRITICALCVSS 9.8v1.10.02022-10-24
CVE-2021-26730 [CRITICAL] CWE-121 CVE-2021-26730: A stack-based buffer overflow vulnerability in a subfunction of the Login_handler_func function of s
A stack-based buffer overflow vulnerability in a subfunction of the Login_handler_func function of spx_restservice allows an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-4228P3HIGHCVSS 7.4v1.00.02022-10-24
CVE-2021-4228 [HIGH] CWE-321 CVE-2021-4228: Use of hard-coded TLS certificate by default allows an attacker to perform Man-in-the-Middle (MitM)
Use of hard-coded TLS certificate by default allows an attacker to perform Man-in-the-Middle (MitM) attacks even in the presence of the HTTPS connection. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.00.0.
nvd
CVE-2021-46279P3HIGHCVSS 8.8v1.10.02022-10-24
CVE-2021-46279 [HIGH] CWE-384 CVE-2021-46279: Session fixation and insufficient session expiration vulnerabilities allow an attacker to perfom ses
Session fixation and insufficient session expiration vulnerabilities allow an attacker to perfom session hijacking attacks against users. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-26733P3HIGHCVSS 7.5v1.10.02022-10-24
CVE-2021-26733 [HIGH] CWE-284 CVE-2021-26733: A broken access control vulnerability in the FirstReset_handler_func function of spx_restservice all
A broken access control vulnerability in the FirstReset_handler_func function of spx_restservice allows an attacker to arbitrarily send reboot commands to the BMC, causing a Denial-of-Service (DoS) condition. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-44467P3HIGHCVSS 7.5v1.10.02022-10-24
CVE-2021-44467 [HIGH] CWE-284 CVE-2021-44467: A broken access control vulnerability in the KillDupUsr_func function of spx_restservice allows an a
A broken access control vulnerability in the KillDupUsr_func function of spx_restservice allows an attacker to arbitrarily terminate active sessions of other users, causing a Denial-of-Service (DoS) condition, if an input parameter is correctly guessed. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-44769P4MEDIUMCVSS 6.5v1.10.02022-10-24
CVE-2021-44769 [MEDIUM] CWE-20 CVE-2021-44769: An improper input validation vulnerability in the TLS certificate generation function allows an atta
An improper input validation vulnerability in the TLS certificate generation function allows an attacker to cause a Denial-of-Service (DoS) condition which can only be reverted via a factory reset. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-26732P4MEDIUMCVSS 5.3v1.10.02022-10-24
CVE-2021-26732 [MEDIUM] CWE-284 CVE-2021-26732: A broken access control vulnerability in the First_network_func function of spx_restservice allows a
A broken access control vulnerability in the First_network_func function of spx_restservice allows an attacker to arbitrarily change the network configuration of the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-44776P4MEDIUMCVSS 5.3v1.10.02022-10-24
CVE-2021-44776 [MEDIUM] CWE-284 CVE-2021-44776: A broken access control vulnerability in the SubNet_handler_func function of spx_restservice allows
A broken access control vulnerability in the SubNet_handler_func function of spx_restservice allows an attacker to arbitrarily change the security access rights to KVM and Virtual Media functionalities. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd
CVE-2021-45925P4MEDIUMCVSS 5.3v1.10.02022-10-24
CVE-2021-45925 [MEDIUM] CWE-203 CVE-2021-45925: Observable discrepancies in the login process allow an attacker to guess legitimate user names regis
Observable discrepancies in the login process allow an attacker to guess legitimate user names registered in the BMC. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
nvd