Vulnerabilities > Seiko SOL

DATE CVE VULNERABILITY TITLE RISK
2023-05-10 CVE-2023-22361 Unspecified vulnerability in Seiko-Sol products
Improper privilege management vulnerability in SkyBridge MB-A100/110 firmware Ver.
network
low complexity
seiko-sol
6.5
2023-05-10 CVE-2023-22441 Missing Authentication for Critical Function vulnerability in Seiko-Sol products
Missing authentication for critical function exists in Seiko Solutions SkyBridge series, which may allow a remote attacker to obtain or alter the setting information of the product or execute some critical functions without authentication, e.g., rebooting the product.
network
low complexity
seiko-sol CWE-306
8.6
2023-05-10 CVE-2023-23578 Unspecified vulnerability in Seiko-Sol Skybridge Mb-A200 Firmware 01.00.04
Improper access control vulnerability in SkyBridge MB-A200 firmware Ver.
network
low complexity
seiko-sol
7.5
2023-05-10 CVE-2023-23901 Improper Certificate Validation vulnerability in Seiko-Sol products
Improper following of a certificate's chain of trust exists in SkyBridge MB-A200 firmware Ver.
network
low complexity
seiko-sol CWE-295
6.5
2023-05-10 CVE-2023-23906 Missing Authentication for Critical Function vulnerability in Seiko-Sol products
Missing authentication for critical function exists in SkyBridge MB-A100/110 firmware Ver.
network
low complexity
seiko-sol CWE-306
7.5
2023-05-10 CVE-2023-24586 Cleartext Storage of Sensitive Information vulnerability in Seiko-Sol products
Cleartext storage of sensitive information exists in SkyBridge MB-A100/110 firmware Ver.
network
low complexity
seiko-sol CWE-312
6.5
2023-05-10 CVE-2023-25070 Cleartext Transmission of Sensitive Information vulnerability in Seiko-Sol products
Cleartext transmission of sensitive information exists in SkyBridge MB-A100/110 firmware Ver.
network
low complexity
seiko-sol CWE-319
6.5
2023-05-10 CVE-2023-25072 Weak Password Requirements vulnerability in Seiko-Sol products
Use of weak credentials exists in SkyBridge MB-A100/110 firmware Ver.
network
low complexity
seiko-sol CWE-521
7.5
2023-05-10 CVE-2023-25184 Weak Password Requirements vulnerability in Seiko-Sol products
Use of weak credentials exists in Seiko Solutions SkyBridge and SkySpider series, which may allow a remote unauthenticated attacker to decrypt password for the WebUI of the product.
network
low complexity
seiko-sol CWE-521
7.5
2022-08-29 CVE-2022-36556 Command Injection vulnerability in Seiko-Sol products
Seiko SkyBridge MB-A100/A110 v4.2.0 and below was discovered to contain a command injection vulnerability via the ipAddress parameter at 07system08execute_ping_01.
network
low complexity
seiko-sol CWE-77
critical
9.8