Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2016-6535 | 10.0 |
AVer Information EH6108H+ devices with firmware X9.03.24.00.07l have hardcoded accounts, which allows remote attackers to obtain root access by leveraging knowledge of the credentials and establishing a TELNET session.
|
28-11-2016 - 20:33 | 19-09-2016 - 01:59 | |
CVE-2016-6537 | 5.0 |
AVer Information EH6108H+ devices with firmware X9.03.24.00.07l store passwords in a cleartext base64 format and require cleartext credentials in HTTP Cookie headers, which allows context-dependent attacks to obtain sensitive information by reading t
|
28-11-2016 - 20:33 | 19-09-2016 - 01:59 | |
CVE-2016-6536 | 10.0 |
The /setup URI on AVer Information EH6108H+ devices with firmware X9.03.24.00.07l allows remote attackers to bypass intended page-access restrictions or modify passwords by leveraging knowledge of a handle parameter value.
|
28-11-2016 - 20:33 | 19-09-2016 - 01:59 |