Vulnerabilities (CVE)

Filtered by vendor Cosori Subscribe
Filtered by product Cs158-af
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-28593 1 Cosori 2 Cs158-af, Cs158-af Firmware 2024-02-28 6.8 MEDIUM 8.1 HIGH
A unauthenticated backdoor exists in the configuration server functionality of Cosori Smart 5.8-Quart Air Fryer CS158-AF 1.1.0. A specially crafted JSON object can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability.
CVE-2020-28592 1 Cosori 2 Cs158-af, Cs158-af Firmware 2024-02-28 7.5 HIGH 9.8 CRITICAL
A heap-based buffer overflow vulnerability exists in the configuration server functionality of the Cosori Smart 5.8-Quart Air Fryer CS158-AF 1.1.0. A specially crafted JSON object can lead to remote code execution. An attacker can send a malicious packet to trigger this vulnerability.