Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
getvera vulnerabilities and exploits
(subscribe to this query)
9.9
CVSSv3
CVE-2017-9383
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/port_3480". It seems that the UPnP services provide "wget" as one of th...
Getvera Veraedge Firmware
Getvera Veralite Firmware
9.8
CVSSv3
CVE-2019-13598
LuaUPnP in Vera Edge Home Controller 1.7.4452 allows remote unauthenticated users to execute arbitrary OS commands via the code parameter to /port_3480/data_request because the "No unsafe lua allowed" code block is skipped.
Getvera Vera Edge Firmware 1.7.4452
9.8
CVSSv3
CVE-2017-9385
An issue exists on Vera Veralite 1.7.481 devices. The device has an additional OpenWRT interface in addition to the standard web interface which allows the highest privileges a user can obtain on the device. This web interface uses root as the username and the password in the /et...
Getvera Veraedge Firmware
Getvera Veralite Firmware
8.8
CVSSv3
CVE-2019-15498
cgi-bin/cmh/webcam.sh in Vera Edge Home Controller 1.7.4452 allows remote unauthenticated users to execute arbitrary OS commands via --output argument injection in the username parameter to /cgi-bin/cmh/webcam.sh.
Getvera Vera Edge Firmware 1.7.4452
8.8
CVSSv3
CVE-2017-9391
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/port_3480". It seems that the UPnP services provide "request_image" as ...
Getvera Veraedge Firmware
Getvera Veralite Firmware
8.8
CVSSv3
CVE-2017-9392
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides UPnP services that are available on port 3480 and can also be accessed via port 80 using the url "/port_3480". It seems that the UPnP services provide "request_image" as ...
Getvera Veraedge Firmware
Getvera Veralite Firmware
8.8
CVSSv3
CVE-2017-9389
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the device allows a user to install applications written in the Lua programming language. Also th...
Getvera Veraedge Firmware
Getvera Veralite Firmware
8.8
CVSSv3
CVE-2017-9381
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a user with the capability of installing or deleting apps on the device using the web management interface. It seems that the device does not implement any cross-site request forgery protect...
Getvera Veraedge Firmware
Getvera Veralite Firmware
8.8
CVSSv3
CVE-2017-9384
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the device firmware file contains a file known as relay.sh which allows the device to create rela...
Getvera Veraedge Firmware
Getvera Veralite Firmware
8.8
CVSSv3
CVE-2017-9388
An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a web user interface that allows a user to manage the device. As a part of the functionality the device firmware file contains a file known as proxy.sh which allows the device to proxy a spe...
Getvera Veraedge Firmware
Getvera Veralite Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »