VYPR

COMpact 5500R

by Auerswald

CVEs (3)

  • CVE-2021-40859Dec 7, 2021
    risk 0.09cvss epss 0.72

    Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow attackers with access to the web based management application full administrative access to the device.

  • CVE-2021-40858Dec 13, 2021
    risk 0.00cvss epss 0.02

    Auerswald COMpact 5500R devices before 8.2B allow Arbitrary File Disclosure. A sub-admin can read the cleartext Admin password via the fileName=../../etc/passwd substring.

  • CVE-2021-40857Dec 13, 2021
    risk 0.00cvss epss 0.02

    Auerswald COMpact 5500R devices before 8.2B allow Privilege Escalation via the passwd=1 substring.