Vulnerabilities > Garrett

DATE CVE VULNERABILITY TITLE RISK
2021-12-22 CVE-2021-21901 Out-of-bounds Write vulnerability in Garrett IC Module CMA 5.0
A stack-based buffer overflow vulnerability exists in the CMA check_udp_crc function of Garrett Metal Detectors’ iC Module CMA Version 5.0.
network
low complexity
garrett CWE-787
critical
 9.0
9.0
2021-12-22 CVE-2021-21902 Improper Authentication vulnerability in Garrett IC Module CMA 5.0
An authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0.
network
garrett CWE-287
critical
 9.3
9.3
2021-12-22 CVE-2021-21903 Out-of-bounds Write vulnerability in Garrett IC Module CMA 5.0
A stack-based buffer overflow vulnerability exists in the CMA check_udp_crc function of Garrett Metal Detectors’ iC Module CMA Version 5.0.
network
low complexity
garrett CWE-787
critical
 10.0
10
2021-12-22 CVE-2021-21904 Path Traversal vulnerability in Garrett IC Module CMA 5.0
A directory traversal vulnerability exists in the CMA CLI setenv command of Garrett Metal Detectors’ iC Module CMA Version 5.0.
network
low complexity
garrett CWE-22
critical
 9.0
9.0
2021-12-22 CVE-2021-21905 Out-of-bounds Write vulnerability in Garrett IC Module CMA 5.0
Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations.
network
garrett CWE-787
8.5
8.5
2021-12-22 CVE-2021-21906 Out-of-bounds Write vulnerability in Garrett IC Module CMA 5.0
Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations.
network
low complexity
garrett CWE-787
critical
 9.0
9.0
2021-12-22 CVE-2021-21907 Path Traversal vulnerability in Garrett IC Module CMA 5.0
A directory traversal vulnerability exists in the CMA CLI getenv command functionality of Garrett Metal Detectors’ iC Module CMA Version 5.0.
network
low complexity
garrett CWE-22
4.0
4.0
2021-12-22 CVE-2021-21908 Path Traversal vulnerability in Garrett IC Module Firmware 5.0
Specially-crafted command line arguments can lead to arbitrary file deletion.
network
low complexity
garrett CWE-22
5.5
5.5
2021-12-22 CVE-2021-21909 Path Traversal vulnerability in Garrett IC Module Firmware 5.0
Specially-crafted command line arguments can lead to arbitrary file deletion in the del .cnt|.log file delete command.
network
low complexity
garrett CWE-22
5.5
5.5