M!dge Firmware

m!dge_firmware

Vendor: Racom • 9 CVEs

CVEs (9)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-20075 1Racom 1M!dge Firmware Nov 21, 2024 Feb 16, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows for privilege escalation via configd.
CVE-2021-20074 1Racom 1M!dge Firmware Nov 21, 2024 Feb 16, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows users to escape the provided command line interface and execute arbitrary OS commands.
CVE-2021-20073 1Racom 1M!dge Firmware Nov 21, 2024 Feb 16, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows for cross-site request forgeries.
CVE-2021-20072 1Racom 1M!dge Firmware Nov 21, 2024 Feb 16, 2021 N/A· v4 7.2 HIGH· v3 8.7 HIGH· v2 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to arbitrarily access and delete files via an authenticated directory traveral.
CVE-2021-20071 1Racom 1M!dge Firmware Nov 21, 2024 Feb 16, 2021 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the sms.php dialogs.
CVE-2021-20070 1Racom 1M!dge Firmware Nov 21, 2024 Feb 16, 2021 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the virtualization.php dialogs.
CVE-2021-20069 1Racom 1M!dge Firmware Nov 21, 2024 Feb 16, 2021 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the regionalSettings.php dialogs.
CVE-2021-20068 1Racom 1M!dge Firmware Nov 21, 2024 Feb 16, 2021 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the error handling functionality of web pages.
CVE-2021-20067 1Racom 1M!dge Firmware Nov 21, 2024 Feb 16, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication.