Vulnerabilities > Panasonic
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-14 | CVE-2019-15376 | Unspecified vulnerability in Panasonic Eluga RAY 530 Firmware The Panasonic Eluga Ray 530 Android device with a build fingerprint of Panasonic/ELUGA_Ray_530/ELUGA_Ray_530:8.1.0/O11019/1531828974:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app (versionCode=27, versionName=8.1.0) that allows any app co-located on the device to modify a system property through an exported interface without proper authorization. | 5.5 |
| 2019-09-12 | CVE-2019-5996 | SQL Injection vulnerability in Panasonic Video Insight VMS 7.3.2.5 SQL injection vulnerability in the Video Insight VMS 7.3.2.5 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors. | 8.8 |
| 2019-06-07 | CVE-2019-6532 | Type Confusion vulnerability in Panasonic Control Fpwin PRO 6.414/7.3.0.0 Panasonic FPWIN Pro version 7.3.0.0 and prior allows attacker-created project files to be loaded by an authenticated user triggering incompatible type errors because the resource does not have expected properties. | 7.8 |
| 2019-06-07 | CVE-2019-6530 | Out-of-bounds Write vulnerability in Panasonic Control Fpwin PRO 6.414/7.3.0.0 Panasonic FPWIN Pro version 7.3.0.0 and prior allows attacker-created project files to be loaded by an authenticated user causing heap-based buffer overflows, which may lead to remote code execution. | 7.8 |
| 2019-01-09 | CVE-2018-16183 | Unquoted Search Path or Element vulnerability in Panasonic products An unquoted search path vulnerability in some pre-installed applications on Panasonic PC run on Windows 7 (32bit), Windows 7 (64bit), Windows 8 (64bit), Windows 8.1 (64bit), Windows 10 (64bit) delivered in or later than October 2009 allow local users to gain privileges via a Trojan horse executable file and execute arbitrary code with eleveted privileges. | 7.8 |
| 2019-01-09 | CVE-2018-0678 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Panasonic Bn-Sdwbp3 Firmware 1.0.9 Buffer overflow in BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to execute arbitrary code via unspecified vectors. | 6.8 |
| 2019-01-09 | CVE-2018-0677 | OS Command Injection vulnerability in Panasonic Bn-Sdwbp3 Firmware 1.0.9 BN-SDWBP3 firmware version 1.0.9 and earlier allows attacker with administrator rights on the same network segment to execute arbitrary OS commands via unspecified vectors. | 6.8 |
| 2019-01-09 | CVE-2018-0676 | Improper Authentication vulnerability in Panasonic Bn-Sdwbp3 Firmware 1.0.9 BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to bypass authentication to access to the management screen and execute an arbitrary command via unspecified vectors. | 8.8 |
| 2017-10-20 | CVE-2017-2133 | SQL Injection vulnerability in Panasonic Kx-Hjb1000 Firmware Ghx1Yg14.50/Hjb10004.47 SQL injection vulnerability in Panasonic KX-HJB1000 Home unit devices with firmware GHX1YG 14.50 or HJB1000_4.47 allows authenticated attackers to execute arbitrary SQL commands via unspecified vectors. | 8.8 |
| 2017-10-20 | CVE-2017-2132 | Improper Input Validation vulnerability in Panasonic Kx-Hjb1000 Firmware Ghx1Yg14.50/Hjb10004.47 Panasonic KX-HJB1000 Home unit devices with firmware GHX1YG 14.50 or HJB1000_4.47 allow an attacker to delete arbitrary files in a specific directory via unspecified vectors. | 7.5 |