Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
getvera vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2017-9381
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a user with the capability of installing or deleting apps on the device using the web management interface. It seems that the device does not implement any cross-site request forgery protect...
Getvera Veraedge Firmware
Getvera Veralite Firmware
4
CVSSv2
CVE-2017-9382
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/port_3480". It seems that the UPnP services provide "file" as one of th...
Getvera Veraedge Firmware
Getvera Veralite Firmware
6.5
CVSSv2
CVE-2017-9383
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/port_3480". It seems that the UPnP services provide "wget" as one of th...
Getvera Veraedge Firmware
Getvera Veralite Firmware
9
CVSSv2
CVE-2017-9384
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the device firmware file contains a file known as relay.sh which allows the device to create rela...
Getvera Veraedge Firmware
Getvera Veralite Firmware
5
CVSSv2
CVE-2017-9385
An issue exists on Vera Veralite 1.7.481 devices. The device has an additional OpenWRT interface in addition to the standard web interface which allows the highest privileges a user can obtain on the device. This web interface uses root as the username and the password in the /et...
Getvera Veraedge Firmware
Getvera Veralite Firmware
4
CVSSv2
CVE-2017-9386
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a script file called "get_file.sh" which allows a user to retrieve any file stored in the "cmh-ext" folder on the device. However, the "filename" parameter is n...
Getvera Veraedge Firmware
Getvera Veralite Firmware
3.5
CVSSv2
CVE-2017-9387
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a shell script called relay.sh which is used for creating new SSH relays for the device so that the device connects to Vera servers. All the parameters passed in this specific script are log...
Getvera Veraedge Firmware
Getvera Veralite Firmware
9
CVSSv2
CVE-2017-9388
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the device firmware file contains a file known as proxy.sh which allows the device to proxy a spe...
Getvera Veraedge Firmware
Getvera Veralite Firmware
9
CVSSv2
CVE-2017-9389
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the device allows a user to install applications written in the Lua programming language. Also th...
Getvera Veraedge Firmware
Getvera Veralite Firmware
4.3
CVSSv2
CVE-2017-9390
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a shell script called connect.sh which is supposed to return a specific cookie for the user when the user is authenticated to https://home.getvera.com. One of the parameters retrieved by thi...
Getvera Veraedge Firmware
Getvera Veralite Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »