VYPR

GoodCloud IoT Device Management System

by Gl Inet

CVEs (2)

  • CVE-2022-42055Oct 27, 2022
    risk 0.01cvss epss 0.02

    Multiple command injection vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 via the ping and traceroute tools allow attackers to read arbitrary files on the system.

  • CVE-2022-42054Oct 27, 2022
    risk 0.00cvss epss 0.00

    Multiple stored cross-site scripting (XSS) vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Company Name and Description text fields.