VYPR

REMOTE VIEW PRO

by Socomec

CVEs (2)

  • CVE-2021-41871Dec 15, 2021
    risk 0.00cvss epss 0.00

    An issue was discovered in Socomec REMOTE VIEW PRO 2.0.41.4. Improper validation of input into the username field makes it possible to place a stored XSS payload. This is executed if an administrator views the System Event Log.

  • CVE-2021-41870Dec 15, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the firmware update form in Socomec REMOTE VIEW PRO 2.0.41.4. An authenticated attacker can bypass a client-side file-type check and upload arbitrary .php files.