Vulnerabilities > Panasonic > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-07-09 CVE-2021-32972 Unspecified vulnerability in Panasonic Fpwin PRO 7.5.0.1/7.5.1.1
Panasonic FPWIN Pro, all Versions 7.5.1.1 and prior, allows an attacker to craft a project file specifying a URI that causes the XML parser to access the URI and embed the contents, which may allow the attacker to disclose information that is accessible in the context of the user executing software.
local
low complexity
panasonic
5.5
2020-12-28 CVE-2020-29193 Use of Hard-coded Credentials vulnerability in Panasonic Wv-S2231L Firmware 4.25
Panasonic Security System WV-S2231L 4.25 has an insecure hard-coded password of lkjhgfdsa (which is just the asdf keyboard row in reverse order).
low complexity
panasonic CWE-798
6.8
2019-11-14 CVE-2019-15378 Unspecified vulnerability in Panasonic Eluga RAY 600 Firmware
The Panasonic Eluga Ray 600 Android device with a build fingerprint of Panasonic/ELUGA_Ray_600/ELUGA_Ray_600:8.1.0/O11019/1532692680:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app (versionCode=27, versionName=8.1.0) that allows any app co-located on the device to modify a system property through an exported interface without proper authorization.
local
low complexity
panasonic
5.5
2019-11-14 CVE-2019-15376 Unspecified vulnerability in Panasonic Eluga RAY 530 Firmware
The Panasonic Eluga Ray 530 Android device with a build fingerprint of Panasonic/ELUGA_Ray_530/ELUGA_Ray_530:8.1.0/O11019/1531828974:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app (versionCode=27, versionName=8.1.0) that allows any app co-located on the device to modify a system property through an exported interface without proper authorization.
local
low complexity
panasonic
5.5
2019-01-09 CVE-2018-0678 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Panasonic Bn-Sdwbp3 Firmware 1.0.9
Buffer overflow in BN-SDWBP3 firmware version 1.0.9 and earlier allows an attacker on the same network segment to execute arbitrary code via unspecified vectors.
low complexity
panasonic CWE-119
6.8
2019-01-09 CVE-2018-0677 OS Command Injection vulnerability in Panasonic Bn-Sdwbp3 Firmware 1.0.9
BN-SDWBP3 firmware version 1.0.9 and earlier allows attacker with administrator rights on the same network segment to execute arbitrary OS commands via unspecified vectors.
low complexity
panasonic CWE-78
6.8
2017-10-20 CVE-2017-2131 Information Exposure vulnerability in Panasonic Kx-Hjb1000 Firmware Ghx1Yg14.50/Hjb10004.47
Panasonic KX-HJB1000 Home unit devices with firmware GHX1YG 14.50 or HJB1000_4.47 allow an attacker to bypass access restrictions to view the configuration menu via unspecified vectors.
network
low complexity
panasonic CWE-200
5.3
2016-05-12 CVE-2016-4499 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Panasonic Fpwin PRO
Heap-based buffer overflow in Panasonic FPWIN Pro 5.x through 7.x before 7.130 allows local users to cause a denial of service (application crash) via unspecified vectors.
local
high complexity
panasonic CWE-119
4.2
2016-05-12 CVE-2016-4498 Improper Input Validation vulnerability in Panasonic Fpwin PRO
Panasonic FPWIN Pro 5.x through 7.x before 7.130 accesses an uninitialized pointer, which allows local users to cause a denial of service or possibly have unspecified other impact via unknown vectors.
network
low complexity
panasonic CWE-20
5.5
2016-05-12 CVE-2016-4497 Improper Input Validation vulnerability in Panasonic Fpwin PRO
Panasonic FPWIN Pro 5.x through 7.x before 7.130 allows local users to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion."
local
high complexity
panasonic CWE-20
4.2