Vulnerabilities > Imomobile > Verve Connect Vh510 Firmware

DATE CVE VULNERABILITY TITLE RISK
2020-11-04 CVE-2020-27692 Cross-Site Request Forgery (CSRF) vulnerability in Imomobile Verve Connect Vh510 Firmware
The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0516 contains multiple CSRF vulnerabilities within its web management portal.
network
imomobile CWE-352
6.8
6.8
2020-11-04 CVE-2020-27691 Cross-site Scripting vulnerability in Imomobile Verve Connect Vh510 Firmware
The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0516 allows XSS via URLBlocking Settings, SNMP Settings, and System Log Settings.
network
imomobile CWE-79
4.3
4.3
2020-11-04 CVE-2020-27690 Classic Buffer Overflow vulnerability in Imomobile Verve Connect Vh510 Firmware
The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0516 contains a buffer overflow within its web management portal.
local
low complexity
imomobile CWE-120
4.9
4.9
2020-11-04 CVE-2020-27689 Use of Hard-coded Credentials vulnerability in Imomobile Verve Connect Vh510 Firmware
The Relish (Verve Connect) VH510 device with firmware before 1.0.1.6L0516 contains undocumented default admin credentials for the web management interface.
network
low complexity
imomobile CWE-798
5.0
5.0