Lucene search

Web Viewer Security Vulnerabilities

cve

CVE-2015-8279

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to read arbitrary files via a request to an unspecified PHP script.

8.6CVSS

8.4AI Score

0.581EPSS

2016-01-15 03:59 AM

cve

CVE-2015-8280

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials by reading detailed error messages.

7.5CVSS

8.1AI Score

0.011EPSS

2016-01-15 03:59 AM

cve

CVE-2015-8281

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations.

7.5CVSS

8AI Score

0.002EPSS

2016-01-15 03:59 AM

cve

CVE-2017-16524

Web Viewer 1.0.0.193 on Samsung SRN-1670D devices suffers from an Unrestricted file upload vulnerability: 'network_ssl_upload.php' allows remote authenticated attackers to upload and execute arbitrary PHP code via a filename with a .php extension, which is then accessed via a direct request to the ...

8.8CVSS

8.5AI Score

0.581EPSS

2017-11-06 08:29 AM

cve

CVE-2021-32572

Speco Web Viewer through 2021-05-12 allows Directory Traversal via GET request for a URI with /.. at the beginning, as demonstrated by reading the /etc/passwd file.

7.5CVSS

7.5AI Score

0.003EPSS

2021-05-12 04:15 PM