cbcvebase.

Mesa Labs Amegaview vulnerabilities

5 known vulnerabilities affecting mesa_labs/amegaview.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH2

Vulnerabilities

Page 1 of 1
CVE-2021-27447P2CRITICALCVSS 9.8≥ unspecified, ≤ 3.02021-12-21
CVE-2021-27447 [CRITICAL] CWE-77 CVE-2021-27447: Mesa Labs AmegaView version 3.0 is vulnerable to a command injection, which may allow an attacker to Mesa Labs AmegaView version 3.0 is vulnerable to a command injection, which may allow an attacker to remotely execute arbitrary code.
nvd
CVE-2021-27449P2HIGHCVSS 8.8≥ unspecified, ≤ 3.02021-12-21
CVE-2021-27449 [HIGH] CWE-77 CVE-2021-27449: Mesa Labs AmegaView Versions 3.0 and prior has a command injection vulnerability that can be exploit Mesa Labs AmegaView Versions 3.0 and prior has a command injection vulnerability that can be exploited to execute commands in the web server.
nvd
CVE-2021-27453P3CRITICALCVSS 9.8≥ unspecified, ≤ 3.02021-12-21
CVE-2021-27453 [CRITICAL] CWE-288 CVE-2021-27453: Mesa Labs AmegaView Versions 3.0 uses default cookies that could be set to bypass authentication to Mesa Labs AmegaView Versions 3.0 uses default cookies that could be set to bypass authentication to the web application, which may allow an attacker to gain access.
nvd
CVE-2021-27451P3CRITICALCVSS 9.8≥ unspecified, ≤ 3.02021-12-21
CVE-2021-27451 [CRITICAL] CWE-287 CVE-2021-27451: Mesa Labs AmegaView Versions 3.0 and prior’s passcode is generated by an easily reversible algorithm Mesa Labs AmegaView Versions 3.0 and prior’s passcode is generated by an easily reversible algorithm, which may allow an attacker to gain access to the device.
nvd
CVE-2021-27445P3HIGHCVSS 7.8≥ unspecified, ≤ 3.02021-12-21
CVE-2021-27445 [HIGH] CWE-269 CVE-2021-27445: Mesa Labs AmegaView Versions 3.0 and prior has insecure file permissions that could be exploited to Mesa Labs AmegaView Versions 3.0 and prior has insecure file permissions that could be exploited to escalate privileges on the device.
nvd
Mesa Labs Amegaview vulnerabilities | cvebase