Vulnerabilities > Aver

DATE	CVE	VULNERABILITY TITLE	RISK
2016-09-19	CVE-2016-6537	Information Exposure vulnerability in Aver Eh6108H+ Firmware X9.03.24.00.07L AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext base64 format and require cleartext credentials in HTTP Cookie headers, which allows context-dependent attacks to obtain sensitive information by reading these strings. network low complexity aver CWE-200	5.0
2016-09-19	CVE-2016-6536	Permissions, Privileges, and Access Controls vulnerability in Aver Eh6108H+ Firmware The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value. network low complexity aver CWE-264 critical	10.0
2016-09-19	CVE-2016-6535	Use of Hard-coded Credentials vulnerability in Aver Eh6108H+ Firmware X9.03.24.00.07L AVer Information EH6108H+ devices with firmware X9.03.24.00.07l have hardcoded accounts, which allows remote attackers to obtain root access by leveraging knowledge of the credentials and establishing a TELNET session. network low complexity aver CWE-798 critical	10.0

Vulnerabilities > Aver {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Aver"}]}