CVEs (6)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Relyum 2Rely Pcie Firmware Rely Rec FirmwareNov 21, 2024 Dec 13, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices are susceptible to Cross Site Request Forgery (CSRF) attacks due to the absence of CSRF protection in the web interface. |
1Relyum 2Rely Pcie Firmware Rely Rec FirmwareNov 21, 2024 Dec 13, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue discovered in Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 allows for unauthorized password changes due to no check for current password. |
1Relyum 2Rely Pcie Firmware Rely Rec FirmwareNov 21, 2024 Dec 13, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue was discovered in Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices, allowing authenticated command injection through the web interface. |
1Relyum 2Rely Pcie Firmware Rely Rec FirmwareNov 21, 2024 Dec 13, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 An issue was discovered on Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices. The web interfaces of the Relyum devices are susceptible to reflected XSS. |
1Relyum 2Rely Pcie Firmware Rely Rec FirmwareNov 21, 2024 Dec 13, 2023 N/A· v4 5.9 MEDIUM· v3 N/A· v2 An issue was discovered on Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices. There is a Weak SMB configuration with signing disabled. |
1Relyum 2Rely Pcie Firmware Rely Rec FirmwareNov 21, 2024 Dec 13, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue discovered in Relyum RELY-PCIe 22.2.1 devices. The authorization mechanism is not enforced in the web interface, allowing a low-privileged user to execute administrative functions. |