Sealevel Seaconnect_370w
12 CVEs affecting Sealevel Seaconnect_370w. Latest disclosed: 2022-04-14. Critical: 3, High: 6.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-21961 | Critical | 10.0 | 2022-02-04 | A stack-based buffer overflow vulnerability exists in the NBNS functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted network pac… |
CVE-2021-21960 | Critical | 10.0 | 2022-02-04 | A stack-based buffer overflow vulnerability exists in both the LLMNR functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted netwo… |
CVE-2021-21965 | Critical | 9.3 | 2022-02-04 | A denial of service vulnerability exists in the SeaMax remote configuration functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. Specially-crafted… |
CVE-2021-21968 | High | 8.3 | 2022-02-04 | A file write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can… |
CVE-2021-21970 | High | 8.1 | 2022-02-04 | An out-of-bounds write vulnerability exists in the HandleSeaCloudMessage functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. The HandleIncomingSea… |
CVE-2021-21969 | High | 8.1 | 2022-02-04 | An out-of-bounds write vulnerability exists in the HandleSeaCloudMessage functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. The HandleIncomingSea… |
CVE-2021-21962 | High | 8.1 | 2022-02-04 | A heap-based buffer overflow vulnerability exists in the OTA Update u-download functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A series of spe… |
CVE-2021-21959 | High | 8.1 | 2022-02-04 | A misconfiguration exists in the MQTTS functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. This misconfiguration significantly simplifies a man-in… |
CVE-2021-21964 | High | 7.4 | 2022-02-04 | A denial of service vulnerability exists in the Modbus configuration functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. Specially-crafted network… |
CVE-2021-21967 | Medium | 5.9 | 2022-04-14 | An out-of-bounds write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT pa… |
CVE-2021-21971 | Medium | 5.9 | 2022-02-04 | An out-of-bounds write vulnerability exists in the URL_decode functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload… |
CVE-2021-21963 | Medium | 5.9 | 2022-02-04 | An information disclosure vulnerability exists in the Web Server functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted man-in-th… |