SunVeillance Monitoring System

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2019-12720	AUO SunVeillance Monitoring System		0.00	—	0.00		Nov 12, 2019	AUO SunVeillance Monitoring System before v1.1.9e is vulnerable to mvc_send_mail.aspx (MailAdd parameter) SQL Injection. An Attacker can carry a SQL Injection payload to the server, allowing the attacker to read privileged data. This also affects the picture_manage_mvc.aspx…
CVE-2019-12719	AUO SunVeillance Monitoring System		0.00	—	0.01		Nov 12, 2019	An issue was discovered in Picture_Manage_mvc.aspx in AUO SunVeillance Monitoring System before v1.1.9e. There is an incorrect access control vulnerability that can allow an unauthenticated user to upload files via a modified authority parameter.

CVE-2019-12720Nov 12, 2019
AUO
SunVeillance Monitoring System
risk 0.00cvss —epss 0.00
AUO SunVeillance Monitoring System before v1.1.9e is vulnerable to mvc_send_mail.aspx (MailAdd parameter) SQL Injection. An Attacker can carry a SQL Injection payload to the server, allowing the attacker to read privileged data. This also affects the picture_manage_mvc.aspx…
CVE-2019-12719Nov 12, 2019
AUO
SunVeillance Monitoring System
risk 0.00cvss —epss 0.01
An issue was discovered in Picture_Manage_mvc.aspx in AUO SunVeillance Monitoring System before v1.1.9e. There is an incorrect access control vulnerability that can allow an unauthenticated user to upload files via a modified authority parameter.