Unisoon Ultralog Express Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Unisoon Ultralog Express Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-3936 — CVSS 10.0 (critical): UltraLog Express device management interface does not properly filter user inputted string in some specific parameters, attackers can…
CVE-2020-3921 — CVSS 8.6 (high): UltraLog Express device management software stores user’s information in cleartext. Any user can obtain accounts information through a…
CVE-2020-3920 — CVSS 8.1 (high): UltraLog Express device management interface does not properly perform access authentication in some specific pages/functions. Any user can…