Vulnerabilities (CVE)

Filtered by vendor Nascent Subscribe
Filtered by product Remkon Device Manager
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-38613 1 Nascent 1 Remkon Device Manager 2024-11-21 10.0 HIGH 9.8 CRITICAL
The assets/index.php Image Upload feature of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to upload any code to the target system and achieve remote code execution.
CVE-2021-38612 1 Nascent 1 Remkon Device Manager 2024-11-21 5.0 MEDIUM 7.5 HIGH
In NASCENT RemKon Device Manager 4.0.0.0, a Directory Traversal vulnerability in a log-reading function in maintenance/readLog.php allows an attacker to read any file via a specialized URL.
CVE-2021-38611 1 Nascent 1 Remkon Device Manager 2024-11-21 10.0 HIGH 9.8 CRITICAL
A command-injection vulnerability in the Image Upload function of the NASCENT RemKon Device Manager 4.0.0.0 allows attackers to execute arbitrary commands, as root, via shell metacharacters in the filename parameter to assets/index.php.