Vulnerabilities > Mesalabs

DATE	CVE	VULNERABILITY TITLE	RISK
2021-12-21	CVE-2021-27445	Incorrect Permission Assignment for Critical Resource vulnerability in Mesalabs Amegaview Mesa Labs AmegaView Versions 3.0 and prior has insecure file permissions that could be exploited to escalate privileges on the device. local low complexity mesalabs CWE-732	7.8
2021-12-21	CVE-2021-27447	Command Injection vulnerability in Mesalabs Amegaview Mesa Labs AmegaView version 3.0 is vulnerable to a command injection, which may allow an attacker to remotely execute arbitrary code. network low complexity mesalabs CWE-77 critical	9.8
2021-12-21	CVE-2021-27449	Command Injection vulnerability in Mesalabs Amegaview Mesa Labs AmegaView Versions 3.0 and prior has a command injection vulnerability that can be exploited to execute commands in the web server. network low complexity mesalabs CWE-77	8.8
2021-12-21	CVE-2021-27451	Improper Authentication vulnerability in Mesalabs Amegaview Mesa Labs AmegaView Versions 3.0 and prior’s passcode is generated by an easily reversible algorithm, which may allow an attacker to gain access to the device. network low complexity mesalabs CWE-287 critical	9.8
2021-12-21	CVE-2021-27453	Authentication Bypass Using an Alternate Path or Channel vulnerability in Mesalabs Amegaview Mesa Labs AmegaView Versions 3.0 uses default cookies that could be set to bypass authentication to the web application, which may allow an attacker to gain access. network low complexity mesalabs CWE-288 critical	9.8

Vulnerabilities > Mesalabs {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Mesalabs"}]}