Yee Ching Tok

#15687de 53,638
17.3CVSS total
Vulnerabilidades · 2
Alta
1
Crítica
1
PT-2017-12998
7.5
2017-12-01
Ismartalarm · Ismartalarm Cubeone · CVE-2017-13663
**Name of the Vulnerable Software and Affected Versions** iSmartAlarm CubeOne versions 2.2.4.8 and earlier **Description** The issue allows attackers to decrypt log files due to an exposed encryption key in the firmware. **Recommendations** For iSmartAlarm CubeOne versions 2.2.4.8 and earlier, update to a version later than 2.2.4.8 to resolve the issue.
PT-2017-12999
9.8
2017-12-01
Ismartalarm · Ismartalarm Cubeone · CVE-2017-13664
**Name of the Vulnerable Software and Affected Versions** iSmartAlarm CubeOne versions 2.2.4.8 and earlier **Description** The issue allows attackers to execute arbitrary commands with administrative privileges by retrieving credentials from an exposed password file in the firmware. **Recommendations** For iSmartAlarm CubeOne versions 2.2.4.8 and earlier, update to a version later than 2.2.4.8 to resolve the issue.