cbcvebase.

Yodinfo Mini Mouse vulnerabilities

3 known vulnerabilities affecting yodinfo/mini_mouse.

Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2

Vulnerabilities

Page 1 of 1
CVE-2021-47851P2CRITICALCVSS 9.8v9.2.02026-01-21
CVE-2021-47851 [CRITICAL] CWE-78 CVE-2021-47851: Mini Mouse 9.2.0 contains a remote code execution vulnerability that allows attackers to execute arb Mini Mouse 9.2.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary commands through an unauthenticated HTTP endpoint. Attackers can leverage the /op=command endpoint to download and execute payloads by sending crafted JSON requests with malicious script commands.
nvd
CVE-2021-47850P3HIGHCVSS 7.5v9.2.02026-01-21
CVE-2021-47850 [HIGH] CWE-22 CVE-2021-47850: Mini Mouse 9.2.0 contains a path traversal vulnerability that allows remote attackers to access arbi Mini Mouse 9.2.0 contains a path traversal vulnerability that allows remote attackers to access arbitrary system files and directories through crafted HTTP requests. Attackers can retrieve sensitive files like win.ini and list contents of system directories such as C:\Users\Public by manipulating file and path parameters.
nvd
CVE-2021-47849P3HIGHCVSS 7.5v9.3.02026-01-21
CVE-2021-47849 [HIGH] CWE-22 CVE-2021-47849: Mini Mouse 9.3.0 contains a path traversal vulnerability that allows attackers to access sensitive s Mini Mouse 9.3.0 contains a path traversal vulnerability that allows attackers to access sensitive system directories through the device information endpoint. Attackers can retrieve file lists from system directories like /usr, /etc, and /var by manipulating file path parameters in API requests.
nvd
Yodinfo Mini Mouse vulnerabilities | cvebase