Vulnerabilities > Idemia > Morphowave Compact Mdpi Firmware > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-07-22 | CVE-2021-35520 | Out-of-bounds Write vulnerability in Idemia products A Buffer Overflow in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices before 2.6.2 allows physically proximate authenticated attackers to achieve code execution, denial of services, and information disclosure via serial ports. | 6.2 |
2021-07-22 | CVE-2021-35521 | Path Traversal vulnerability in Idemia products A path traversal in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices before 2.6.2 allows remote authenticated attackers to achieve denial of services and information disclosure via TCP/IP packets. | 5.9 |