Vulnerabilities > Sercomm

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-02	CVE-2021-44080	OS Command Injection vulnerability in Sercomm H500S Firmware Lowih500Sv3.4.22 A Command Injection vulnerability in httpd web server (setup.cgi) in SerComm h500s, FW: lowi-h500s-v3.4.22 allows logged in administrators to arbitrary OS commands as root in the device via the connection_type parameter of the statussupport_diagnostic_tracing.json endpoint. network low complexity sercomm CWE-78 critical	9.0
2021-02-27	CVE-2021-27132	Injection vulnerability in Sercomm Agcombo Vd625 Firmware Agsot2.1.0 SerComm AG Combo VD625 AGSOT_2.1.0 devices allow CRLF injection (for HTTP header injection) in the download function via the Content-Disposition header. network low complexity sercomm CWE-74	7.5

Vulnerabilities > Sercomm {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Sercomm"}]}