A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 6.5 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N | 3.9 | 2.5 |
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-74,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| chiyu-tech | bf-431_firmware | - |
| chiyu-tech | bf-450m_firmware | - |
| chiyu-tech | bf-430_firmware | - |
Multiple storage XSS vulnerabilities were discovered on BF-430, BF-431 and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of sanitization of the input on the components man.cgi, if.cgi, dhcpc.cgi, ppp.cgi.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 5.4 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N | 2.3 | 2.7 |
CVSS 2.0
Severity: LOW
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| chiyu-tech | bf-431_firmware | - |
| chiyu-tech | bf-450m_firmware | - |
| chiyu-tech | bf-430_firmware | - |
An authentication bypass in telnet server in BF-430 and BF431 232/422 TCP/IP Converter, BF-450M and SEMAC from CHIYU Technology Inc allows obtaining a privileged connection with the target device by supplying a specially malformed request and an attacker may force the remote telnet server to believe that the user has already authenticated.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 9.8 | CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | 3.9 | 5.9 |
CVSS 2.0
Severity: HIGH
Problem Type: CWE-287,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| chiyu-tech | bf-431_firmware | - |
| chiyu-tech | bf-450m_firmware | - |
| chiyu-tech | semac_d2_firmware | - |
| chiyu-tech | semac_s2_firmware | - |
| chiyu-tech | semac_d4_firmware | - |
| chiyu-tech | semac_d2_n300_firmware | - |
| chiyu-tech | semac_d1_firmware | - |
| chiyu-tech | bf-430_firmware | - |
| chiyu-tech | semac_s3v3_firmware | - |
| chiyu-tech | semac_s1_osdp_firmware | - |
An open redirect vulnerability exists in BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, and SEMAC devices from CHIYU Technology that can be exploited by sending a link that has a specially crafted URL to convince the user to click on it.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 6.1 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N | 2.8 | 2.7 |
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-601,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| chiyu-tech | bf-450m_firmware | - |
| chiyu-tech | bf-630_firmware | - |
| chiyu-tech | bf-830w_firmware | - |
| chiyu-tech | semac_d2_n300_firmware | - |
| chiyu-tech | bf-631w_firmware | - |
| chiyu-tech | semac_d1_firmware | - |
| chiyu-tech | webpass_firmware | - |
| chiyu-tech | semac_s1_osdp_firmware | - |
| chiyu-tech | bf-431_firmware | - |
| chiyu-tech | semac_d2_firmware | - |
| chiyu-tech | semac_s2_firmware | - |
| chiyu-tech | semac_d4_firmware | - |
| chiyu-tech | bf-430_firmware | - |
| chiyu-tech | semac_s3v3_firmware | - |
An unauthenticated XSS vulnerability exists in several IoT devices from CHIYU Technology, including BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass, BF-MINI-W, and SEMAC due to a lack of sanitization when the HTTP 404 message is generated.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 6.1 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N | 2.8 | 2.7 |
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| chiyu-tech | bf-450m_firmware | - |
| chiyu-tech | bf-630_firmware | - |
| chiyu-tech | bf-830w_firmware | - |
| chiyu-tech | semac_d2_n300_firmware | - |
| chiyu-tech | bf-631w_firmware | - |
| chiyu-tech | semac_d1_firmware | - |
| chiyu-tech | webpass_firmware | - |
| chiyu-tech | semac_s1_osdp_firmware | - |
| chiyu-tech | bf-431_firmware | - |
| chiyu-tech | semac_d2_firmware | - |
| chiyu-tech | semac_s2_firmware | - |
| chiyu-tech | semac_d4_firmware | - |
| chiyu-tech | bfminiw_firmware | - |
| chiyu-tech | bf-430_firmware | - |
| chiyu-tech | semac_s3v3_firmware | - |
A denial of service condition exists after an integer overflow in several IoT devices from CHIYU Technology, including BIOSENSE, Webpass, and BF-630, BF-631, and SEMAC. The vulnerability can be explored by sending an unexpected integer (> 32 bits) on the page parameter that will crash the web portal and making it unavailable until a reboot of the device.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 6.5 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H | 2.8 | 3.6 |
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-190,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| chiyu-tech | biosense_firmware | - |
| chiyu-tech | semac_d2_firmware | - |
| chiyu-tech | bf-631_firmware | - |
| chiyu-tech | semac_s2_firmware | - |
| chiyu-tech | bf-630_firmware | - |
| chiyu-tech | semac_d4_firmware | - |
| chiyu-tech | semac_d2_n300_firmware | - |
| chiyu-tech | semac_d1_firmware | - |
| chiyu-tech | webpass_firmware | - |
| chiyu-tech | semac_s3v3_firmware | - |
| chiyu-tech | semac_s1_osdp_firmware | - |
An XSS vulnerability exists in several IoT devices from CHIYU Technology, including SEMAC, Biosense, BF-630, BF-631, and Webpass due to a lack of sanitization on the component if.cgi - username parameter.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| nvd@nist.gov | 5.4 | MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N | 2.3 | 2.7 |
CVSS 2.0
Severity: LOW
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| chiyu-tech | biosense_firmware | - |
| chiyu-tech | semac_d2_firmware | - |
| chiyu-tech | bf-631_firmware | - |
| chiyu-tech | semac_s2_firmware | - |
| chiyu-tech | bf-630_firmware | - |
| chiyu-tech | semac_d4_firmware | - |
| chiyu-tech | semac_d2_n300_firmware | - |
| chiyu-tech | semac_d1_firmware | - |
| chiyu-tech | webpass_firmware | - |
| chiyu-tech | semac_s3v3_firmware | - |
| chiyu-tech | semac_s1_osdp_firmware | - |