Micodus Mv720 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Micodus Mv720 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2022-2107 — CVSS 9.8 (critical): The MiCODUS MV720 GPS tracker API server has an authentication mechanism that allows devices to use a hard-coded master password. This may…
CVE-2022-2199 — CVSS 7.5 (high): The main MiCODUS MV720 GPS tracker web server has a reflected cross-site scripting vulnerability that could allow an attacker to gain…
CVE-2022-34150 — CVSS 7.1 (high): The main MiCODUS MV720 GPS tracker web server has an authenticated insecure direct object reference vulnerability on endpoint and parameter…
CVE-2022-33944 — CVSS 6.5 (medium): The main MiCODUS MV720 GPS tracker web server has an authenticated insecure direct object references vulnerability on endpoint and POST…