Stengg Vpncrypt M10 Firmware vulnerabilities
2 known vulnerabilities affecting stengg/vpncrypt_m10_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2020-12106P2CRITICALCVSS 9.8v2.6.52020-08-12
CVE-2020-12106 [CRITICAL] CWE-306 CVE-2020-12106: The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows unauthenticated users to send HTTP PO
The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows unauthenticated users to send HTTP POST request to several critical Administrative functions such as, changing credentials of the Administrator account or connect the product to a rogue access point.
nvd
CVE-2020-12107P3CRITICALCVSS 9.8v2.6.52020-08-12
CVE-2020-12107 [CRITICAL] CWE-78 CVE-2020-12107: The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows command injection via a text field, w
The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows command injection via a text field, which allow full control over this module's Operating System.
nvd