← Back

Siretta

siretta

64 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Quartz Gold Firmware
quartz-gold_firmware
64 CVEs
Quartz Gold
quartz-gold
0 CVEs

CVEs (64)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-38459
1Siretta
1Quartz Gold Firmware
Nov 21, 2024
Jan 26, 2023
N/A· v4
8.8 HIGH· v3
N/A· v2
A stack-based buffer overflow vulnerability exists in the httpd downfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to remote code execution. An attacker ca...Show more
A stack-based buffer overflow vulnerability exists in the httpd downfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability.Show less
CVE-2022-38088
1Siretta
1Quartz Gold Firmware
Nov 21, 2024
Jan 26, 2023
N/A· v4
6.5 MEDIUM· v3
N/A· v2
A directory traversal vulnerability exists in the httpd downfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to arbitrary file read. An attacker can send an...Show more
A directory traversal vulnerability exists in the httpd downfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to arbitrary file read. An attacker can send an HTTP request to trigger this vulnerability.Show less
CVE-2022-38066
1Siretta
1Quartz Gold Firmware
Nov 21, 2024
Jan 26, 2023
N/A· v4
8.8 HIGH· v3
N/A· v2
An OS command injection vulnerability exists in the httpd SNMP functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP response can lead to arbitrary command execution. An attacker can send...Show more
An OS command injection vulnerability exists in the httpd SNMP functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP response can lead to arbitrary command execution. An attacker can send a network request to trigger this vulnerability.Show less
CVE-2022-36279
1Siretta
1Quartz Gold Firmware
Nov 21, 2024
Jan 26, 2023
N/A· v4
8.8 HIGH· v3
N/A· v2
A stack-based buffer overflow vulnerability exists in the httpd delfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to remote code execution. An attacker can...Show more
A stack-based buffer overflow vulnerability exists in the httpd delfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted HTTP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability.Show less