← Back

Live Encoder

live_encoder

Vendor: Cires21 • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-0643
1Cires21
1Live Encoder
Nov 21, 2024
Jan 17, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Unrestricted upload of dangerous file types in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to upload different file extensions without any restrictions, resultin...Show more
Unrestricted upload of dangerous file types in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to upload different file extensions without any restrictions, resulting in a full system compromise.Show less
CVE-2024-0642
1Cires21
1Live Encoder
Nov 21, 2024
Jan 17, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Inadequate access control in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to access the application as an administrator user through the application endpoint, due...Show more
Inadequate access control in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to access the application as an administrator user through the application endpoint, due to lack of proper credential management.Show less