This page aggregates publicly disclosed CVE and security risk information related to aeroadmin, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2017-8894 | AeroAdmin 4.1 uses an insecure protocol (HTTP) to perform software updates. An attacker can hijack an update via man-in-the-middle in order to execute code in the machine. | [email protected] | 8.1 | 0.89% | 2017-07-02 | 2026-05-13 |
| CVE-2017-8893 | AeroAdmin 4.1 uses a function to copy data between two pointers where the size of the data copied is taken directly from a network packet. This can cause a buffer overflow and denial of service. | [email protected] | 7.5 | 0.33% | 2017-07-02 | 2026-05-13 |