Siretta Quartz-Gold vulnerabilities
64 known vulnerabilities affecting siretta/quartz-gold.
Total CVEs
64
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL43HIGH19MEDIUM2
Vulnerabilities
Page 1 of 4
CVE-2022-42493P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-42493 [CRITICAL] CWE-78 CVE-2022-42493: Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5
Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is reachable through the m2m's DOWNLOAD_INFO command.
nvd
CVE-2022-42490P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-42490 [CRITICAL] CWE-78 CVE-2022-42490: Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5
Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is reachable through the m2m's DOWNLOAD_CFG_FILE command
nvd
CVE-2022-42491P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-42491 [CRITICAL] CWE-78 CVE-2022-42491: Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5
Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is reachable through the m2m's M2M_CONFIG_SET command
nvd
CVE-2022-42492P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-42492 [CRITICAL] CWE-78 CVE-2022-42492: Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5
Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is reachable through the m2m's DOWNLOAD_AD command.
nvd
CVE-2022-40222P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-40222 [CRITICAL] CWE-78 CVE-2022-40222: An OS command injection vulnerability exists in the m2m DELETE_FILE cmd functionality of Siretta QUA
An OS command injection vulnerability exists in the m2m DELETE_FILE cmd functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger this vulnerability.
nvd
CVE-2022-42484P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-30
CVE-2022-42484 [CRITICAL] CWE-78 CVE-2022-42484: An OS command injection vulnerability exists in the httpd logs/view.cgi functionality of FreshTomato
An OS command injection vulnerability exists in the httpd logs/view.cgi functionality of FreshTomato 2022.5. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP request to trigger this vulnerability.
nvd
CVE-2022-41010P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41010 [CRITICAL] CWE-120 CVE-2022-41010: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41009P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41009 [CRITICAL] CWE-120 CVE-2022-41009: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-38066P2HIGHCVSS 8.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-38066 [HIGH] CWE-78 CVE-2022-38066: An OS command injection vulnerability exists in the httpd SNMP functionality of Siretta QUARTZ-GOLD
An OS command injection vulnerability exists in the httpd SNMP functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP response can lead to arbitrary command execution. An attacker can send a network request to trigger this vulnerability.
nvd
CVE-2022-41017P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41017 [CRITICAL] CWE-120 CVE-2022-41017: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41018P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41018 [CRITICAL] CWE-120 CVE-2022-41018: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41003P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41003 [CRITICAL] CWE-120 CVE-2022-41003: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41008P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41008 [CRITICAL] CWE-120 CVE-2022-41008: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41004P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41004 [CRITICAL] CWE-120 CVE-2022-41004: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41007P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41007 [CRITICAL] CWE-120 CVE-2022-41007: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41030P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41030 [CRITICAL] CWE-120 CVE-2022-41030: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41012P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41012 [CRITICAL] CWE-120 CVE-2022-41012: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41001P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41001 [CRITICAL] CWE-120 CVE-2022-41001: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41015P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41015 [CRITICAL] CWE-120 CVE-2022-41015: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
CVE-2022-41016P2CRITICALCVSS 9.8vG5.0.1.5-210720-1410202023-01-26
CVE-2022-41016 [CRITICAL] CWE-120 CVE-2022-41016: Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functiona
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that
nvd
1 / 4Next →