Vulnerabilities > Ewon > Ewon Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-12-23 | CVE-2015-7929 | Information Exposure vulnerability in Ewon Firmware 10.0S0 eWON devices with firmware through 10.1s0 support unspecified GET requests, which might allow remote attackers to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer logs, or (3) the browser history. | 4.3 |
| 2015-12-23 | CVE-2015-7927 | Cross-site Scripting vulnerability in Ewon Firmware 10.0S0 Cross-site scripting (XSS) vulnerability on eWON devices with firmware through 10.1s0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |