VYPR
Vendor

Compal

Products
3
CVEs
3
Across products
4
Status
Private

Products

3

Recent CVEs

3
  • CVE-2019-13025CriOct 2, 2019
    risk 0.64cvss 9.8epss 0.03

    Compal CH7465LG CH7465LG-NCIP-6.12.18.24-5p8-NOSH devices have Incorrect Access Control because of Improper Input Validation. The attacker can send a maliciously modified POST (HTTP) request containing shell commands, which will be executed on the device, to an backend API…

  • CVE-2019-19494HigJan 9, 2020
    risk 0.62cvss 8.8epss 0.23

    Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's browser. Examples of affected products include Sagemcom F@st 3890 prior to…

  • CVE-2019-17499HigOct 11, 2019
    risk 0.57cvss 8.8epss 0.03

    The setter.xml component of the Common Gateway Interface on Compal CH7465LG 6.12.18.25-2p4 devices does not properly validate ping command arguments, which allows remote authenticated users to execute OS commands as root via shell metacharacters in the Target_IP parameter.