← Back

Snapgear Sg560 Firmware

snapgear_sg560_firmware

Vendor: Securecomputing • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-36909
1Securecomputing
1Snapgear Sg560 Firmware
Feb 23, 2026
Jan 6, 2026
8.7 HIGH· v4
8.8 HIGH· v3
N/A· v2
SnapGear Management Console SG560 3.1.5 contains a file manipulation vulnerability that allows authenticated users to read, write, and delete files using the edit_config_files CGI script. Attackers can manipulate POST re...Show more
SnapGear Management Console SG560 3.1.5 contains a file manipulation vulnerability that allows authenticated users to read, write, and delete files using the edit_config_files CGI script. Attackers can manipulate POST request parameters in /cgi-bin/cgix/edit_config_files to access and modify files outside the intended /etc/config/ directory.Show less
CVE-2020-36908
1Securecomputing
1Snapgear Sg560 Firmware
Feb 23, 2026
Jan 6, 2026
5.1 MEDIUM· v4
8.8 HIGH· v3
N/A· v2
SnapGear Management Console SG560 version 3.1.5 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft a malicious web page t...Show more
SnapGear Management Console SG560 version 3.1.5 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft a malicious web page that automatically submits a form to create a new super user account with full administrative privileges when a logged-in user visits the page.Show less