Vulnerabilities (CVE)

Filtered by vendor Gl-inet Subscribe
Filtered by product Goodcloud
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-44212 1 Gl-inet 1 Goodcloud 2024-11-21 N/A 5.9 MEDIUM
In GL.iNet Goodcloud 1.0, insecure design allows remote attacker to access devices' admin panel.
CVE-2022-44211 1 Gl-inet 1 Goodcloud 2024-11-21 N/A 7.4 HIGH
In GL.iNet Goodcloud 1.1 Incorrect access control allows a remote attacker to access/change devices' settings.
CVE-2022-42055 1 Gl-inet 1 Goodcloud 2024-11-21 N/A 6.5 MEDIUM
Multiple command injection vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 via the ping and traceroute tools allow attackers to read arbitrary files on the system.
CVE-2022-42054 1 Gl-inet 1 Goodcloud 2024-11-21 N/A 5.4 MEDIUM
Multiple stored cross-site scripting (XSS) vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Company Name and Description text fields.