CVEDB API

Vulnerabilities

Vulnerable Software

Mediatek: >> En7580 Firmware Security Vulnerabilities

CVE-2021-31573

In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210009; Issue ID: OSBNB00123234.

CVSS Score

9.8

EPSS Score

0.025

Published

2023-02-06

CVE-2021-31574

CVSS Score

9.8

EPSS Score

0.025

Published

2023-02-06

CVE-2021-31575

CVSS Score

9.8

EPSS Score

0.025

Published

2023-02-06

CVE-2021-31576

In Boa, there is a possible information disclosure due to a missing permission check. This could lead to remote information disclosure to a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.

CVSS Score

7.5

EPSS Score

0.005

Published

2023-02-06

CVE-2021-31577

In Boa, there is a possible escalation of privilege due to a missing permission check. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.

CVSS Score

9.8

EPSS Score

0.026

Published

2023-02-06

CVE-2021-31578

In Boa, there is a possible escalation of privilege due to a stack buffer overflow. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241.

CVSS Score

9.8

EPSS Score

0.024

Published

2023-02-06

Page 1

Vulnerabilities

Vulnerable Software

Mediatek: >> En7580 Firmware Security Vulnerabilities

Products

Pricing

Contact Us