Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openelec openelec vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6025
Directory traversal vulnerability in scr/form.php in openElec 3.01 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the obj parameter.
Openelec Openelec 2.02
Openelec Openelec
Openelec Openelec 3.00
1 EDB exploit
8.1
CVSSv3
CVE-2017-6445
The auto-update feature of Open Embedded Linux Entertainment Center (OpenELEC) 6.0.3, 7.0.1, and 8.0.4 uses neither encrypted connections nor signed updates. A man-in-the-middle attacker could manipulate the update packages to gain root access remotely.
Openelec Openelec 6.0.3
Openelec Openelec 7.0.1
9.8
CVSSv3
CVE-2016-2230
OpenELEC and RasPlex devices have a hardcoded password for the root account, which makes it easier for remote malicious users to obtain access via an SSH session.
Openelec Openelec
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started