Petwant Pf-103 Firmware vulnerabilities
9 known vulnerabilities affecting petwant/pf-103_firmware.
Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL7HIGH2
Vulnerabilities
Page 1 of 1
CVE-2019-16730P2CRITICALCVSS 9.8v4.22.2.422019-12-13
CVE-2019-16730 [CRITICAL] CWE-78 CVE-2019-16730: processCommandUpgrade() in libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30
processCommandUpgrade() in libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to execute arbitrary system commands as the root user.
nvd
CVE-2019-16733P2CRITICALCVSS 9.8v4.22.2.422019-12-13
CVE-2019-16733 [CRITICAL] CWE-78 CVE-2019-16733: processCommandSetUid() in libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 a
processCommandSetUid() in libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to execute arbitrary system commands as the root user.
nvd
CVE-2019-16737P2CRITICALCVSS 9.8v4.22.2.422019-12-13
CVE-2019-16737 [CRITICAL] CWE-78 CVE-2019-16737: The processCommandSetMac() function of libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk
The processCommandSetMac() function of libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to execute arbitrary system commands as the root user.
nvd
CVE-2019-17364P2CRITICALCVSS 9.8v4.22.2.422019-12-13
CVE-2019-17364 [CRITICAL] CWE-78 CVE-2019-17364: The processCommandUploadLog() function of libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Peta
The processCommandUploadLog() function of libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to execute arbitrary system commands as the root user.
nvd
CVE-2019-16734P2CRITICALCVSS 9.8v4.22.2.422019-12-13
CVE-2019-16734 [CRITICAL] CWE-798 CVE-2019-16734: Use of default credentials for the TELNET server in Petwant PF-103 firmware 4.3.2.50 and Petalk AI 3
Use of default credentials for the TELNET server in Petwant PF-103 firmware 4.3.2.50 and Petalk AI 3.2.2.30 allows remote attackers to execute arbitrary system commands as the root user.
nvd
CVE-2019-16735P2CRITICALCVSS 9.8v4.22.2.422019-12-13
CVE-2019-16735 [CRITICAL] CWE-787 CVE-2019-16735: A stack-based buffer overflow in processCommandUploadLog in libcommon.so in Petwant PF-103 firmware
A stack-based buffer overflow in processCommandUploadLog in libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to cause denial of service or run arbitrary code as the root user.
nvd
CVE-2019-16736P2CRITICALCVSS 9.8v4.22.2.422019-12-13
CVE-2019-16736 [CRITICAL] CWE-787 CVE-2019-16736: A stack-based buffer overflow in processCommandUploadSnapshot in libcommon.so in Petwant PF-103 firm
A stack-based buffer overflow in processCommandUploadSnapshot in libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to cause denial of service or run arbitrary code as the root user.
nvd
CVE-2019-16732P3HIGHCVSS 8.1v4.22.2.422019-12-13
CVE-2019-16732 [HIGH] CWE-319 CVE-2019-16732: Unencrypted HTTP communications for firmware upgrades in Petalk AI and PF-103 allow man-in-the-middl
Unencrypted HTTP communications for firmware upgrades in Petalk AI and PF-103 allow man-in-the-middle attackers to run arbitrary code as the root user.
nvd
CVE-2019-16731P3HIGHCVSS 7.5v4.22.2.422019-12-13
CVE-2019-16731 [HIGH] CWE-306 CVE-2019-16731: The udpServerSys service in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote a
The udpServerSys service in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to initiate firmware upgrades and alter device settings.
nvd