SEIL routers with firmware SEIL/x86 1.00 through 2.35, SEIL/X1 2.30 through 3.75, SEIL/X2 2.30 through 3.75, and SEIL/B1 2.30 through 3.75, when the http-proxy and application-gateway features are enabled, do not properly handle the CONNECT command, which allows remote attackers to bypass intended URL restrictions via a TCP session.
CVSS 2.0
Severity: LOW
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| seil | b1 | 3.31 |
| seil | x1 | 2.42 |
| seil | b1 | 2.50 |
| seil | b1 | 3.71 |
| seil | b1 | 3.10 |
| seil | b1 | 2.61 |
| seil | b1 | 2.42 |
| seil | b1_firmware | 3.11 |
| seil | x2 | 2.30 |
| seil | b1_firmware | 2.72 |
| seil | x2 | 2.62 |
| seil | b1_firmware | 2.40 |
| seil | b1 | 3.41 |
| seil | x1 | 2.30 |
| seil | b1_firmware | 3.70 |
| seil | b1_firmware | 3.13 |
| seil | b1 | 3.75 |
| seil | x2 | 2.63 |
| seil | b1 | 2.62 |
| seil | b1_firmware | 3.51 |
| seil | x1 | 2.40 |
| seil | x2 | 2.60 |
| seil | x2 | 3.75 |
| seil | x2 | 2.50 |
| seil | b1_firmware | 2.42 |
| seil | b1_firmware | 3.30 |
| seil | b1_firmware | 2.51 |
| seil | x1 | 3.30 |
| seil | b1_firmware | 2.50 |
| seil | b1_firmware | 2.73 |
| seil | b1 | 3.11 |
| seil | x1 | 3.60 |
| seil | x2 | 2.73 |
| seil | b1_firmware | 2.52 |
| seil | x2 | 3.12 |
| seil | x1 | 3.01 |
| seil | x2 | 3.10 |
| seil | x2 | 3.20 |
| seil | x1 | 3.12 |
| seil | b1_firmware | 2.30 |
| seil | x2 | 3.21 |
| seil | b1 | 2.60 |
| seil | x1 | 2.63 |
| seil | x2 | 2.40 |
| seil | b1_firmware | 3.20 |
| seil | b1_firmware | 3.50 |
| seil | b1 | 3.12 |
| seil | b1_firmware | 3.10 |
| seil | b1 | 2.63 |
| seil | b1 | 3.01 |
| seil | b1_firmware | 2.60 |
| seil | x2 | 3.70 |
| seil | x2 | 3.30 |
| seil | b1_firmware | 2.62 |
| seil | b1 | 2.74 |
| seil | x1 | 2.72 |
| seil | x86_firmware | 1.61 |
| seil | b1_firmware | 3.75 |
| seil | x2 | 3.40 |
| seil | x1 | 3.70 |
| seil | x1 | 2.52 |
| seil | b1 | 3.51 |
| seil | x2 | 2.75 |
| seil | x1 | 2.60 |
| seil | x1 | 2.73 |
| seil | x1 | 3.21 |
| seil | b1 | 3.13 |
| seil | x1 | 2.62 |
| seil | x2 | 2.72 |
| seil | x2 | 3.13 |
| seil | b1_firmware | 3.60 |
| seil | x2 | 3.31 |
| seil | x2 | 3.01 |
| seil | x1 | 2.41 |
| seil | b1_firmware | 3.01 |
| seil | b1_firmware | 3.12 |
| seil | x1 | 3.31 |
| seil | x2 | 3.71 |
| seil | b1_firmware | 3.41 |
| seil | b1 | 2.52 |
| seil | x2 | 2.51 |
| seil | x1 | 2.51 |
| seil | b1 | 2.73 |
| seil | x1 | 3.50 |
| seil | x2 | 3.02 |
| seil | x2 | 2.52 |
| seil | b1 | 3.40 |
| seil | b1_firmware | 2.41 |
| seil | b1 | 2.75 |
| seil | x1 | 2.74 |
| seil | x1 | 3.13 |
| seil | b1_firmware | 3.40 |
| seil | x2 | 2.61 |
| seil | x1 | 2.75 |
| seil | x1 | 3.20 |
| seil | x2 | 2.74 |
| seil | b1 | 3.02 |
| seil | x2 | 3.11 |
| seil | x2 | 3.50 |
| seil | x1 | 3.02 |
| seil | b1 | 2.70 |
| seil | b1_firmware | 2.70 |
| seil | x2 | 3.41 |
| seil | x86_firmware | 1.00 |
| seil | x1 | 3.41 |
| seil | x1 | 2.50 |
| seil | b1 | 3.70 |
| seil | x2 | 2.41 |
| seil | x1 | 3.40 |
| seil | x1 | 3.10 |
| seil | x2 | 2.70 |
| seil | x2 | 2.42 |
| seil | x1 | 3.51 |
| seil | b1_firmware | 2.74 |
| seil | x1 | 3.71 |
| seil | x2 | 3.60 |
| seil | b1_firmware | 2.63 |
| seil | b1_firmware | 2.75 |
| seil | b1 | 2.40 |
| seil | b1 | 3.20 |
| seil | x2 | 3.51 |
| seil | b1 | 2.51 |
| seil | b1 | 3.30 |
| seil | b1 | 3.60 |
| seil | b1 | 2.30 |
| seil | b1 | 3.50 |
| seil | x1 | 3.75 |
| seil | b1_firmware | 2.61 |
| seil | x1 | 2.61 |
| seil | x1 | 2.70 |
| seil | b1_firmware | 3.02 |
| seil | b1 | 2.41 |
| seil | b1 | 3.21 |
| seil | b1_firmware | 3.71 |
| seil | x1 | 3.11 |
| seil | b1_firmware | 3.31 |
| seil | b1 | 2.72 |
| seil | b1_firmware | 3.21 |
SEIL/X 4.60 to 5.72, SEIL/B1 4.60 to 5.72, SEIL/x86 3.20 to 5.72, SEIL/BPV4 5.00 to 5.72 allows remote attackers to cause a temporary failure of the device's encrypted communications via a specially crafted packet.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| seil | x2_firmware | 4.60 |
| seil | x1_firmware | 4.60 |
| seil | x86_fuji_firmware | 3.20 |
| seil | x86_fuji_firmware | 5.72 |
| seil | bpv_4_firmware | 5.00 |
| seil | x1_firmware | 5.72 |
| seil | x2_firmware | 5.72 |
| seil | b1_firmware | 4.60 |
| seil | b1_firmware | 5.72 |
| seil | bpv_4_firmware | 5.72 |
SEIL/x86 Fuji 1.70 to 5.62, SEIL/BPV4 5.00 to 5.62, SEIL/X1 1.30 to 5.62, SEIL/X2 1.30 to 5.62, SEIL/B1 1.00 to 5.62 allows remote attackers to cause a denial of service via specially crafted IPv4 UDP packets.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| seil | x1_firmware | - |
| seil | b1_firmware | - |
| seil | x86_fuji_firmware | - |
| seil | bpv_4_firmware | - |
| seil | x2_firmware | - |