Vulnerabilities > Pyres

DATE	CVE	VULNERABILITY TITLE	RISK
2021-01-26	CVE-2020-23162	Missing Encryption of Sensitive Data vulnerability in Pyres Termod4 Firmware Sensitive information disclosure and weak encryption in Pyrescom Termod4 time management devices before 10.04k allows remote attackers to read a session-file and obtain plain-text user credentials. network low complexity pyres CWE-311	5.0
2021-01-26	CVE-2020-23161	Path Traversal vulnerability in Pyres Termod4 Firmware Local file inclusion in Pyrescom Termod4 time management devices before 10.04k allows authenticated remote attackers to traverse directories and read sensitive files via the Maintenance > Logs menu and manipulating the file-path in the URL. network low complexity pyres CWE-22	4.0
2021-01-26	CVE-2020-23160	Unspecified vulnerability in Pyres Termod4 Firmware Remote code execution in Pyrescom Termod4 time management devices before 10.04k allows authenticated remote attackers to arbitrary commands as root on the devices. network low complexity pyres critical	9.0

Vulnerabilities > Pyres {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Pyres"}]}