Aeroadmin
Sign in to watchby Aeroadmin
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-8894 | Hig | 0.53 | 8.1 | 0.01 | Jul 2, 2017 | AeroAdmin 4.1 uses an insecure protocol (HTTP) to perform software updates. An attacker can hijack an update via man-in-the-middle in order to execute code in the machine. | |
| CVE-2017-8893 | Hig | 0.49 | 7.5 | 0.00 | Jul 2, 2017 | AeroAdmin 4.1 uses a function to copy data between two pointers where the size of the data copied is taken directly from a network packet. This can cause a buffer overflow and denial of service. |