VYPR

VIA GO²

by KramerAV

CVEs (5)

  • CVE-2023-33509CriMay 31, 2023
    risk 0.64cvss 9.8epss 0.01

    KramerAV VIA GO² < 4.0.1.1326 is vulnerable to SQL Injection.

  • CVE-2023-33508CriMay 31, 2023
    risk 0.64cvss 9.8epss 0.01

    KramerAV VIA GO² < 4.0.1.1326 is vulnerable to unauthenticated file upload resulting in Remote Code Execution (RCE).

  • CVE-2023-33468CriAug 9, 2023
    risk 0.59cvss 9.1epss 0.01

    KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 exhibit a vulnerability that enables remote manipulation of the device. This vulnerability involves extracting the connection confirmation code remotely, bypassing the need to obtain it directly…

  • CVE-2023-33469HigAug 9, 2023
    risk 0.51cvss 7.8epss 0.00

    In instances where the screen is visible and remote mouse connection is enabled, KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 can be exploited to achieve local code execution at the root level.

  • CVE-2023-33507HigMay 31, 2023
    risk 0.49cvss 7.5epss 0.01

    KramerAV VIA GO² < 4.0.1.1326 is vulnerable to Unauthenticated arbitrary file read.