Vulnerabilities > Rdkcentral
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-04 | CVE-2023-20832 | Out-of-bounds Write vulnerability in multiple products In gps, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2023-08-07 | CVE-2023-20790 | Out-of-bounds Write vulnerability in multiple products In nvram, there is a possible out of bounds write due to a missing bounds check. | 4.4 |
| 2023-08-07 | CVE-2023-20796 | Out-of-bounds Write vulnerability in multiple products In power, there is a possible memory corruption due to an incorrect bounds check. | 4.4 |
| 2023-06-06 | CVE-2023-20725 | Out-of-bounds Write vulnerability in multiple products In preloader, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2023-05-15 | CVE-2023-20726 | Missing Authorization vulnerability in multiple products In mnld, there is a possible leak of GPS location due to a missing permission check. | 3.3 |
| 2019-06-20 | CVE-2019-6964 | Out-of-bounds Read vulnerability in Rdkcentral Rdkb Ccsppandm Rdkb201812171 A heap-based buffer over-read in Service_SetParamStringValue in cosa_x_cisco_com_ddns_dml.c of the RDK RDKB-20181217-1 CcspPandM module may allow attackers with login credentials to achieve information disclosure and code execution by crafting an AJAX call responsible for DDNS configuration with an exactly 64-byte username, password, or domain, for which the buffer size is insufficient for the final '\0' character. | 8.8 |
| 2019-06-20 | CVE-2019-6963 | Out-of-bounds Write vulnerability in Rdkcentral Rdkb Ccsppandm Rdkb201812171 A heap-based buffer overflow in cosa_dhcpv4_dml.c in the RDK RDKB-20181217-1 CcspPandM module may allow attackers with login credentials to achieve remote code execution by crafting a long buffer in the "Comment" field of an IP reservation form in the admin panel. | 8.8 |
| 2019-06-20 | CVE-2019-6962 | OS Command Injection vulnerability in Rdkcentral Rdkb Ccsppandm Rdkb201812171 A shell injection issue in cosa_wifi_apis.c in the RDK RDKB-20181217-1 CcspWifiAgent module allows attackers with login credentials to execute arbitrary shell commands under the CcspWifiSsp process (running as root) if the platform was compiled with the ENABLE_FEATURE_MESHWIFI macro. | 7.5 |
| 2019-06-20 | CVE-2019-6961 | Missing Authorization vulnerability in Rdkcentral Rdkb Ccsppandm Rdkb201812171 Incorrect access control in actionHandlerUtility.php in the RDK RDKB-20181217-1 WebUI module allows a logged in user to control DDNS, QoS, RIP, and other privileged configurations (intended only for the network operator) by sending an HTTP POST to the PHP backend, because the page filtering for non-superuser (in header.php) is done only for GET requests and not for direct AJAX calls. | 6.5 |