Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chiyu-tech bf-430 firmware - vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2021-31249
A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components.
Chiyu-tech Bf-430 Firmware -
Chiyu-tech Bf-431 Firmware -
Chiyu-tech Bf-450m Firmware -
3.5
CVSSv2
CVE-2021-31250
Multiple storage XSS vulnerabilities were discovered on BF-430, BF-431 and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of sanitization of the input on the components man.cgi, if.cgi, dhcpc.cgi, ppp.cgi.
Chiyu-tech Bf-430 Firmware -
Chiyu-tech Bf-431 Firmware -
Chiyu-tech Bf-450m Firmware -
7.5
CVSSv2
CVE-2021-31251
An authentication bypass in telnet server in BF-430 and BF431 232/422 TCP/IP Converter, BF-450M and SEMAC from CHIYU Technology Inc allows obtaining a privileged connection with the target device by supplying a specially malformed request and an attacker may force the remote teln...
Chiyu-tech Bf-430 Firmware -
Chiyu-tech Bf-431 Firmware -
Chiyu-tech Bf-450m Firmware -
Chiyu-tech Semac S2 Firmware -
Chiyu-tech Semac D1 Firmware -
Chiyu-tech Semac D2 Firmware -
Chiyu-tech Semac D4 Firmware -
Chiyu-tech Semac S3v3 Firmware -
Chiyu-tech Semac D2 N300 Firmware -
Chiyu-tech Semac S1 Osdp Firmware -
5.8
CVSSv2
CVE-2021-31252
An open redirect vulnerability exists in BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, and SEMAC devices from CHIYU Technology that can be exploited by sending a link that has a specially crafted URL to convince the user to click on it.
Chiyu-tech Bf-430 Firmware -
Chiyu-tech Bf-431 Firmware -
Chiyu-tech Bf-450m Firmware -
Chiyu-tech Semac S2 Firmware -
Chiyu-tech Semac D1 Firmware -
Chiyu-tech Semac D2 Firmware -
Chiyu-tech Semac D4 Firmware -
Chiyu-tech Semac S3v3 Firmware -
Chiyu-tech Semac D2 N300 Firmware -
Chiyu-tech Semac S1 Osdp Firmware -
Chiyu-tech Bf-630 Firmware -
Chiyu-tech Bf-631w Firmware -
Chiyu-tech Bf-830w Firmware -
Chiyu-tech Webpass Firmware -
4.3
CVSSv2
CVE-2021-31641
An unauthenticated XSS vulnerability exists in several IoT devices from CHIYU Technology, including BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, BF-MINI-W, and SEMAC due to a lack of sanitization when the HTTP 404 message is generated.
Chiyu-tech Bf-430 Firmware -
Chiyu-tech Bf-431 Firmware -
Chiyu-tech Bf-450m Firmware -
Chiyu-tech Semac S2 Firmware -
Chiyu-tech Semac D1 Firmware -
Chiyu-tech Semac D2 Firmware -
Chiyu-tech Semac D4 Firmware -
Chiyu-tech Semac S3v3 Firmware -
Chiyu-tech Semac D2 N300 Firmware -
Chiyu-tech Semac S1 Osdp Firmware -
Chiyu-tech Bf-630 Firmware -
Chiyu-tech Bf-631w Firmware -
Chiyu-tech Bf-830w Firmware -
Chiyu-tech Webpass Firmware -
Chiyu-tech Bfminiw Firmware -
3.5
CVSSv2
CVE-2021-31643
An XSS vulnerability exists in several IoT devices from CHIYU Technology, including SEMAC, Biosense, BF-630, BF-631, and Webpass due to a lack of sanitization on the component if.cgi - username parameter.
Chiyu-tech Bf-631 Firmware -
Chiyu-tech Bf-630 Firmware -
Chiyu-tech Semac S2 Firmware -
Chiyu-tech Semac D1 Firmware -
Chiyu-tech Semac D2 Firmware -
Chiyu-tech Semac D4 Firmware -
Chiyu-tech Semac S3v3 Firmware -
Chiyu-tech Semac D2 N300 Firmware -
Chiyu-tech Semac S1 Osdp Firmware -
Chiyu-tech Webpass Firmware -
Chiyu-tech Biosense Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started