Siretta

Quartz-gold Firmware

64 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-40986

  • EPSS 1.41%
  • Veröffentlicht 26.01.2023 22:15:16
  • Zuletzt bearbeitet 04.11.2025 20:16:05

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a...

9.8

CVE-2022-40987

  • EPSS 1.41%
  • Veröffentlicht 26.01.2023 22:15:16
  • Zuletzt bearbeitet 04.11.2025 20:16:05

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a...

9.8

CVE-2022-40988

  • EPSS 1.41%
  • Veröffentlicht 26.01.2023 22:15:16
  • Zuletzt bearbeitet 04.11.2025 20:16:05

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a...

9.8

CVE-2022-40989

  • EPSS 1.41%
  • Veröffentlicht 26.01.2023 22:15:16
  • Zuletzt bearbeitet 04.11.2025 20:16:05

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a...

9.8

CVE-2022-40990

  • EPSS 1.41%
  • Veröffentlicht 26.01.2023 22:15:16
  • Zuletzt bearbeitet 04.11.2025 20:16:05

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a...

8.1

CVE-2022-40701

Exploit
  • EPSS 2.12%
  • Veröffentlicht 26.01.2023 22:15:15
  • Zuletzt bearbeitet 21.11.2024 07:21:53

A directory traversal vulnerability exists in the httpd delfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to arbitrary file deletion. An attacker can send an HTTP request to trigger thi...

9.8

CVE-2022-40222

Exploit
  • EPSS 3.61%
  • Veröffentlicht 26.01.2023 22:15:15
  • Zuletzt bearbeitet 21.11.2024 07:21:05

An OS command injection vulnerability exists in the m2m DELETE_FILE cmd functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a network request t...

8.8

CVE-2022-40220

Exploit
  • EPSS 2.41%
  • Veröffentlicht 26.01.2023 22:15:15
  • Zuletzt bearbeitet 21.11.2024 07:21:05

An OS command injection vulnerability exists in the httpd txt/restore.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network request can lead to arbitrary command execution. An attacker can send an HTTP request t...

8.8

CVE-2022-39045

Exploit
  • EPSS 3.34%
  • Veröffentlicht 26.01.2023 22:15:14
  • Zuletzt bearbeitet 21.11.2024 07:17:26

A file write vulnerability exists in the httpd upload.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to arbitrary file upload. An attacker can send an HTTP request to trigger this vulnerabil...

8.8

CVE-2022-38715

Exploit
  • EPSS 5.1%
  • Veröffentlicht 26.01.2023 22:15:14
  • Zuletzt bearbeitet 21.11.2024 07:16:59

A leftover debug code vulnerability exists in the httpd shell.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vu...