Vulnerabilities > Garrett

DATE CVE VULNERABILITY TITLE RISK
2021-12-22 CVE-2021-21901 Out-of-bounds Write vulnerability in Garrett IC Module CMA 5.0
A stack-based buffer overflow vulnerability exists in the CMA check_udp_crc function of Garrett Metal Detectors’ iC Module CMA Version 5.0.
network
low complexity
garrett CWE-787
8.8
8.8
2021-12-22 CVE-2021-21902 Improper Authentication vulnerability in Garrett IC Module CMA 5.0
An authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0.
network
high complexity
garrett CWE-287
8.1
8.1
2021-12-22 CVE-2021-21903 Out-of-bounds Write vulnerability in Garrett IC Module CMA 5.0
A stack-based buffer overflow vulnerability exists in the CMA check_udp_crc function of Garrett Metal Detectors’ iC Module CMA Version 5.0.
network
low complexity
garrett CWE-787
critical
 9.8
9.8
2021-12-22 CVE-2021-21904 Path Traversal vulnerability in Garrett IC Module CMA 5.0
A directory traversal vulnerability exists in the CMA CLI setenv command of Garrett Metal Detectors’ iC Module CMA Version 5.0.
network
low complexity
garrett CWE-22
7.2
7.2
2021-12-22 CVE-2021-21905 Out-of-bounds Write vulnerability in Garrett IC Module CMA 5.0
Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations.
network
low complexity
garrett CWE-787
7.2
7.2
2021-12-22 CVE-2021-21906 Out-of-bounds Write vulnerability in Garrett IC Module CMA 5.0
Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations.
network
low complexity
garrett CWE-787
7.2
7.2
2021-12-22 CVE-2021-21907 Path Traversal vulnerability in Garrett IC Module CMA 5.0
A directory traversal vulnerability exists in the CMA CLI getenv command functionality of Garrett Metal Detectors’ iC Module CMA Version 5.0.
network
low complexity
garrett CWE-22
4.9
4.9
2021-12-22 CVE-2021-21908 Path Traversal vulnerability in Garrett IC Module Firmware 5.0
Specially-crafted command line arguments can lead to arbitrary file deletion.
network
low complexity
garrett CWE-22
6.5
6.5
2021-12-22 CVE-2021-21909 Path Traversal vulnerability in Garrett IC Module Firmware 5.0
Specially-crafted command line arguments can lead to arbitrary file deletion in the del .cnt|.log file delete command.
network
low complexity
garrett CWE-22
8.1
8.1