Vulnerabilities > Skyworthdigital

DATE CVE VULNERABILITY TITLE RISK
2024-01-17 CVE-2023-51728 Cross-site Scripting vulnerability in Skyworthdigital Cm5100 Firmware 4.1.1.24
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the SMTP Password parameter at its web interface.
network
low complexity
skyworthdigital CWE-79
5.4
2024-01-17 CVE-2023-51729 Cross-site Scripting vulnerability in Skyworthdigital Cm5100 Firmware 4.1.1.24
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the DDNS Username parameter at its web interface.
network
low complexity
skyworthdigital CWE-79
5.4
2024-01-17 CVE-2023-51730 Cross-site Scripting vulnerability in Skyworthdigital Cm5100 Firmware 4.1.1.24
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the DDNS Password parameter at its web interface.
network
low complexity
skyworthdigital CWE-79
5.4
2024-01-17 CVE-2023-51731 Cross-site Scripting vulnerability in Skyworthdigital Cm5100 Firmware 4.1.1.24
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the Hostname parameter at its web interface.
network
low complexity
skyworthdigital CWE-79
5.4
2024-01-17 CVE-2023-51732 Cross-site Scripting vulnerability in Skyworthdigital Cm5100 Firmware 4.1.1.24
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the IPsec Tunnel Name parameter at its web interface.
network
low complexity
skyworthdigital CWE-79
5.4
2021-10-27 CVE-2021-41872 Unspecified vulnerability in Skyworthdigital Penguin Aurora BOX 41502 Firmware
Skyworth Digital Technology Penguin Aurora Box 41502 has a denial of service vulnerability, which can be exploited by attackers to cause a denial of service.
network
low complexity
skyworthdigital
7.5
2021-04-09 CVE-2021-25328 Classic Buffer Overflow vulnerability in Skyworthdigital Rn510 Firmware 3.1.0.4
Skyworth Digital Technology RN510 V.3.1.0.4 RN510 V.3.1.0.4 contains a buffer overflow vulnerability in /cgi-bin/app-staticIP.asp.
network
low complexity
skyworthdigital CWE-120
8.8
2021-04-09 CVE-2021-25327 Cross-site Scripting vulnerability in Skyworthdigital Rn510 Firmware 3.1.0.4
Skyworth Digital Technology RN510 V.3.1.0.4 contains a cross-site request forgery (CSRF) vulnerability in /cgi-bin/net-routeadd.asp and /cgi-bin/sec-urlfilter.asp.
network
low complexity
skyworthdigital CWE-79
6.5
2021-04-09 CVE-2021-25326 Cross-Site Request Forgery (CSRF) vulnerability in Skyworthdigital Rn510 Firmware 3.1.0.4
Skyworth Digital Technology RN510 V.3.1.0.4 is affected by an incorrect access control vulnerability in/cgi-bin/test_version.asp.
network
low complexity
skyworthdigital CWE-352
5.4
2019-03-21 CVE-2018-19524 Improper Input Validation vulnerability in Skyworthdigital products
An issue was discovered on Shenzhen Skyworth DT741 Converged Intelligent Terminal (G/EPON+IPTV) SDOTBGN1, DT721-cb SDOTBGN1, and DT741-cb SDOTBGN1 devices.
network
low complexity
skyworthdigital CWE-20
critical
9.8