Ht3 Labs

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An unauthenticated adjacent attacker can modify configuration by sending specific requests to an "API-endpoint" resulting in read and write access due to missing authentication. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An unauthenticated local attacker can inject a command that is subsequently executed as root, leading to a privilege escalation. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.