COMpact 5500R
by Auerswald
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-40859 | 0.09 | — | 0.72 | Dec 7, 2021 | Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow attackers with access to the web based management application full administrative access to the device. | |||
| CVE-2021-40858 | 0.00 | — | 0.02 | Dec 13, 2021 | Auerswald COMpact 5500R devices before 8.2B allow Arbitrary File Disclosure. A sub-admin can read the cleartext Admin password via the fileName=../../etc/passwd substring. | |||
| CVE-2021-40857 | 0.00 | — | 0.02 | Dec 13, 2021 | Auerswald COMpact 5500R devices before 8.2B allow Privilege Escalation via the passwd=1 substring. |
- CVE-2021-40859Dec 7, 2021risk 0.09cvss —epss 0.72
Backdoors were discovered in Auerswald COMpact 5500R 7.8A and 8.0B devices, that allow attackers with access to the web based management application full administrative access to the device.
- CVE-2021-40858Dec 13, 2021risk 0.00cvss —epss 0.02
Auerswald COMpact 5500R devices before 8.2B allow Arbitrary File Disclosure. A sub-admin can read the cleartext Admin password via the fileName=../../etc/passwd substring.
- CVE-2021-40857Dec 13, 2021risk 0.00cvss —epss 0.02
Auerswald COMpact 5500R devices before 8.2B allow Privilege Escalation via the passwd=1 substring.