Vulnerabilities > Carrier > High

DATE CVE VULNERABILITY TITLE RISK
2022-06-06 CVE-2022-31481 Classic Buffer Overflow vulnerability in multiple products
An unauthenticated attacker can send a specially crafted update file to the device that can overflow a buffer.
network
low complexity
hidglobal carrier CWE-120
7.5
7.5
2022-06-06 CVE-2022-31482 Classic Buffer Overflow vulnerability in multiple products
An unauthenticated attacker can send a specially crafted unauthenticated HTTP request to the device that can overflow a buffer.
network
low complexity
hidglobal carrier CWE-120
7.8
7.8
2017-08-31 CVE-2016-5795 XXE vulnerability in multiple products
An XXE issue was discovered in Automated Logic Corporation (ALC) Liebert SiteScan Web Version 6.5 and prior, ALC WebCTRL Version 6.5 and prior, and Carrier i-Vu Version 6.5 and prior.
network
low complexity
automatedlogic carrier CWE-611
7.5
7.5