Vulnerabilities (CVE)

Filtered by vendor Soyal Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-28271 1 Soyal 3 701clientsql, 701server, 701serversql 2024-11-21 6.5 MEDIUM 8.8 HIGH
Soyal Technologies SOYAL 701Server 9.0.1 suffers from an elevation of privileges vulnerability which can be used by an authenticated user to change the executable file with a binary choice. The vulnerability is due to improper permissions with the 'F' flag (Full) for 'Everyone'and 'Authenticated Users' group.
CVE-2021-28269 1 Soyal 1 701client 2024-11-21 6.5 MEDIUM 8.8 HIGH
Soyal Technology 701Client 9.0.1 is vulnerable to Insecure permissions via client.exe binary with Authenticated Users group with Full permissions.
CVE-2019-6451 1 Soyal 4 Ar-727h, Ar-727h Firmware, Ar-829ev5 and 1 more 2024-11-21 5.0 MEDIUM 7.5 HIGH
On SOYAL AR-727H and AR-829Ev5 devices, all CGI programs allow unauthenticated POST access.