VYPR

Accessnow Server

by Ericom

CVEs (2)

  • CVE-2020-24548MedAug 26, 2020
    risk 0.35cvss 5.3epss 0.02

    Ericom Access Server 9.2.0 (for AccessNow and Ericom Blaze) allows SSRF to make outbound WebSocket connection requests on arbitrary TCP ports, and provides "Cannot connect to" error messages to inform the attacker about closed ports.

  • CVE-2014-3913Jun 4, 2014
    risk 0.08cvss epss 0.61

    Stack-based buffer overflow in AccessServer32.exe in Ericom AccessNow Server allows remote attackers to execute arbitrary code via a request for a non-existent file.