Amazon

Blink Xt2 Sync Module Firmware

7 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2019-3984

Exploit
  • EPSS 3.32%
  • Published 31.12.2019 18:15:11
  • Last modified 21.11.2024 04:43:00

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when the device retrieves updates scripts from the internet.

7.2

CVE-2019-3983

Exploit
  • EPSS 1.71%
  • Published 11.12.2019 23:15:11
  • Last modified 21.11.2024 04:43:00

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary code and commands on the device due to insufficient UART protections.

8.8

CVE-2019-3985

Exploit
  • EPSS 0.73%
  • Published 11.12.2019 23:15:11
  • Last modified 21.11.2024 04:43:00

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the ssid parameter.

8.8

CVE-2019-3986

Exploit
  • EPSS 0.54%
  • Published 11.12.2019 23:15:11
  • Last modified 21.11.2024 04:43:00

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the encryption parameter.

8.8

CVE-2019-3987

Exploit
  • EPSS 0.73%
  • Published 11.12.2019 23:15:11
  • Last modified 21.11.2024 04:43:00

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the key parameter.

8.8

CVE-2019-3988

Exploit
  • EPSS 0.73%
  • Published 11.12.2019 23:15:11
  • Last modified 21.11.2024 04:43:00

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when configuring the devices wifi configuration via the bssid parameter.

9.8

CVE-2019-3989

Exploit
  • EPSS 1.4%
  • Published 11.12.2019 23:15:11
  • Last modified 21.11.2024 04:43:00

Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary commands on the device due to improperly sanitized input when retrieving internal network configuration data.