Vulnerabilities > Skymee > Petalk AI Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-13 | CVE-2019-16732 | Cleartext Transmission of Sensitive Information vulnerability in multiple products Unencrypted HTTP communications for firmware upgrades in Petalk AI and PF-103 allow man-in-the-middle attackers to run arbitrary code as the root user. | 8.1 |
| 2019-12-13 | CVE-2019-16731 | Missing Authentication for Critical Function vulnerability in multiple products The udpServerSys service in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to initiate firmware upgrades and alter device settings. | 7.5 |