Sinapsitech Sinapsi Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Sinapsitech Sinapsi Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2012-5862 — CVSS 10.0 (critical): These Sinapsi devices store hard-coded passwords in the PHP file of the device. By using the hard-coded passwords in the device, attackers…
CVE-2012-5863 — CVSS 10.0 (critical): These Sinapsi devices do not check for special elements in commands sent to the system. By accessing certain pages with administrative…
CVE-2012-5864 — CVSS 9.4 (critical): These Sinapsi devices do not check if users that visit pages within the device have properly authenticated. By directly visiting the pages…
CVE-2012-5861 — CVSS 7.8 (high): These Sinapsi devices do not check the validity of the data before executing queries. By accessing the SQL table of certain pages that do…