Vulnerabilities > Zingbox > Inspector > Critical

DATE CVE VULNERABILITY TITLE RISK
2019-10-09 CVE-2019-15019 Improper Input Validation vulnerability in Zingbox Inspector
A security vulnerability exists in the Zingbox Inspector versions 1.294 and earlier, that could allow an attacker to supply an invalid software update image to the Zingbox Inspector.
network
low complexity
zingbox CWE-20
critical
9.8
2019-10-09 CVE-2019-15020 Origin Validation Error vulnerability in Zingbox Inspector
A security vulnerability exists in the Zingbox Inspector versions 1.293 and earlier, that could allow an attacker to supply an invalid software update image to the Zingbox Inspector that could result in command injection.
network
low complexity
zingbox CWE-346
critical
9.8
2019-10-09 CVE-2019-1584 Command Injection vulnerability in Zingbox Inspector
A security vulnerability exists in Zingbox Inspector version 1.293 and earlier, that allows for remote code execution if the Inspector were sent a malicious command from the Zingbox cloud, or if the Zingbox Inspector were tampered with to connect to an attacker's cloud endpoint.
network
low complexity
zingbox CWE-77
critical
9.8