MidnightBSD

Advisories for biges

CVE-2023-35069

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Bullwark allows Path Traversal.This issue affects Bullwark: before BLW-2016E-960H.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@usom.gov.tr 8.6 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L 3.9 4.7

Products Affected

Vendor Product Version
biges bullwark_momentum_series *
CVE-2023-6919

Path Traversal: '/../filedir' vulnerability in Biges Safe Life Technologies Electronics Inc. VGuard allows Absolute Path Traversal.This issue affects VGuard: before V500.0003.R008.4011.C0012.B351.C.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
iletisim@usom.gov.tr 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
biges vg-4c1e-nvr_firmware *
biges vg-4c1a-lru_firmware *
biges vg-4c1a-lrpu_firmware *
biges vg-255-df_firmware *
biges vg-8c1a-lrpu_firmware *
biges vg-255a-bf_firmware *
biges vg-255-bv_firmware *
biges vg-8c1e-nvr_firmware *
biges vg-64c8rd-nvr_firmware *