VYPR

Siime Eye

by Svakom

CVEs (2)

  • CVE-2020-11920CriFeb 8, 2021
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14. A command injection vulnerability resides in the HOST/IP section of the NFS settings menu in the webserver running on the device. By injecting Bash commands via shell metacharacters here, the device…

  • CVE-2020-11915MedFeb 8, 2021
    risk 0.44cvss 6.8epss 0.01

    An issue was discovered in Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14. By sending a set_params.cgi?telnetd=1&save=1&reboot=1 request to the webserver, it is possible to enable the telnet interface on the device. The telnet interface can then be used to obtain access to the…