Vulnerabilities > Gopro > Gopro Hero Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2014-10-07 CVE-2014-6433 Code Injection vulnerability in Gopro Hero and Gopro Hero Firmware
gpExec in GoPro HERO 3+ allows remote attackers to execute arbitrary files via a the (1) a1 or (2) a2 parameter in a start action.
network
low complexity
gopro CWE-94
critical
10.0
2014-10-07 CVE-2014-6434 OS Command Injection vulnerability in Gopro Hero and Gopro Hero Firmware
gpExec in GoPro HERO 3+ allows remote attackers to execute arbitrary commands via a the (1) a1 or (2) a2 parameter in a restart action.
network
low complexity
gopro CWE-78
critical
10.0