Vulnerabilities > Racom

DATE	CVE	VULNERABILITY TITLE	RISK
2021-02-16	CVE-2021-20075	Improper Privilege Management vulnerability in Racom M!Dge Firmware 4.4.40.105 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows for privilege escalation via configd. local low complexity racom CWE-269	7.2
2021-02-16	CVE-2021-20074	OS Command Injection vulnerability in Racom M!Dge Firmware 4.4.40.105 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows users to escape the provided command line interface and execute arbitrary OS commands. network low complexity racom CWE-78 critical	9.0
2021-02-16	CVE-2021-20073	Cross-Site Request Forgery (CSRF) vulnerability in Racom M!Dge Firmware 4.4.40.105 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows for cross-site request forgeries. network racom CWE-352	6.8
2021-02-16	CVE-2021-20072	Path Traversal vulnerability in Racom M!Dge Firmware 4.4.40.105 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to arbitrarily access and delete files via an authenticated directory traveral. network low complexity racom CWE-22	8.7
2021-02-16	CVE-2021-20071	Cross-site Scripting vulnerability in Racom M!Dge Firmware 4.4.40.105 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the sms.php dialogs. network racom CWE-79	3.5
2021-02-16	CVE-2021-20070	Cross-site Scripting vulnerability in Racom M!Dge Firmware 4.4.40.105 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the virtualization.php dialogs. network racom CWE-79	3.5
2021-02-16	CVE-2021-20069	Cross-site Scripting vulnerability in Racom M!Dge Firmware 4.4.40.105 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the regionalSettings.php dialogs. network racom CWE-79	3.5
2021-02-16	CVE-2021-20068	Cross-site Scripting vulnerability in Racom M!Dge Firmware 4.4.40.105 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the error handling functionality of web pages. network racom CWE-79	3.5
2021-02-16	CVE-2021-20067	Information Exposure vulnerability in Racom M!Dge Firmware 4.4.40.105 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication. network low complexity racom CWE-200	5.0

Vulnerabilities > Racom {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Racom"}]}

Vulnerabilities > Racom