Vulnerabilities > Meetcircle > Circle With Disney Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2017-11-07 CVE-2017-2866 OS Command Injection vulnerability in Meetcircle Circle With Disney Firmware 2.0.1
An exploitable vulnerability exists in the /api/CONFIG/backup functionality of Circle with Disney.
network
low complexity
meetcircle CWE-78
critical
 9.0
9.0
2017-11-07 CVE-2017-2883 Unspecified vulnerability in Meetcircle Circle With Disney Firmware 2.0.1
An exploitable vulnerability exists in the database update functionality of Circle with Disney running firmware 2.0.1.
network
meetcircle
critical
 9.3
9.3
2017-11-07 CVE-2017-2890 OS Command Injection vulnerability in Meetcircle Circle With Disney Firmware 2.0.1
An exploitable vulnerability exists in the /api/CONFIG/restore functionality of Circle with Disney running firmware 2.0.1.
network
low complexity
meetcircle CWE-78
critical
 9.0
9.0
2017-11-07 CVE-2017-2916 Link Following vulnerability in Meetcircle Circle With Disney Firmware 2.0.1
An exploitable vulnerability exists in the /api/CONFIG/restore functionality of Circle with Disney running firmware 2.0.1.
network
low complexity
meetcircle CWE-59
critical
 9.0
9.0
2017-11-07 CVE-2017-2917 OS Command Injection vulnerability in Meetcircle Circle With Disney Firmware 2.0.1
An exploitable vulnerability exists in the notifications functionality of Circle with Disney running firmware 2.0.1.
network
low complexity
meetcircle CWE-78
critical
 9.0
9.0