Vulnerabilities > Relyum

DATE CVE VULNERABILITY TITLE RISK
2023-12-13 CVE-2023-47573 Missing Authorization vulnerability in Relyum Rely-Pcie Firmware and Rely-Rec Firmware
An issue discovered in Relyum RELY-PCIe 22.2.1 devices.
network
low complexity
relyum CWE-862
8.8
2023-12-13 CVE-2023-47574 Unspecified vulnerability in Relyum Rely-Pcie Firmware and Rely-Rec Firmware
An issue was discovered on Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices.
network
high complexity
relyum
5.9
2023-12-13 CVE-2023-47575 Cross-site Scripting vulnerability in Relyum Rely-Pcie Firmware and Rely-Rec Firmware
An issue was discovered on Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices.
network
low complexity
relyum CWE-79
6.1
2023-12-13 CVE-2023-47576 Command Injection vulnerability in Relyum Rely-Pcie Firmware and Rely-Rec Firmware
An issue was discovered in Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices, allowing authenticated command injection through the web interface.
network
low complexity
relyum CWE-77
8.8
2023-12-13 CVE-2023-47577 Insufficiently Protected Credentials vulnerability in Relyum Rely-Pcie Firmware and Rely-Rec Firmware
An issue discovered in Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 allows for unauthorized password changes due to no check for current password.
network
low complexity
relyum CWE-522
critical
9.8
2023-12-13 CVE-2023-47578 Cross-Site Request Forgery (CSRF) vulnerability in Relyum Rely-Pcie Firmware and Rely-Rec Firmware
Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices are susceptible to Cross Site Request Forgery (CSRF) attacks due to the absence of CSRF protection in the web interface.
network
low complexity
relyum CWE-352
8.8
2023-12-13 CVE-2023-47579 Unspecified vulnerability in Relyum Rely-Pcie Firmware 22.2.1
Relyum RELY-PCIe 22.2.1 devices suffer from a system group misconfiguration, allowing read access to the central password hash file of the operating system.
network
low complexity
relyum
7.5