Vulnerabilities > Plathome > Openblocks IOT VX2 Firmware

DATE CVE VULNERABILITY TITLE RISK
2020-03-04 CVE-2020-5536 Improper Authentication vulnerability in Plathome Openblocks IOT VX2 Firmware
OpenBlocks IoT VX2 prior to Ver.4.0.0 (Ver.3 Series) allows an attacker on the same network segment to bypass authentication and to initialize the device via unspecified vectors.
low complexity
plathome CWE-287
8.8
8.8
2020-03-04 CVE-2020-5535 OS Command Injection vulnerability in Plathome Openblocks IOT VX2 Firmware
OpenBlocks IoT VX2 prior to Ver.4.0.0 (Ver.3 Series) allows an attacker on the same network segment to execute arbitrary OS commands with root privileges via unspecified vectors.
low complexity
plathome CWE-78
8.8
8.8