This page aggregates publicly disclosed CVE and security risk information related to soyal, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2021-28269 | Soyal Technology 701Client 9.0.1 is vulnerable to Insecure permissions via client.exe binary with Authenticated Users group with Full permissions. | [email protected] | 8.8 | 1.87% | 2021-04-27 | 2024-11-21 |
| CVE-2021-28271 | Soyal Technologies SOYAL 701Server 9.0.1 suffers from an elevation of privileges vulnerability which can be used by an authenticated user to change the executable file with a binary choice. The vulnerability is due to improper permissions with the 'F' flag (Full) for 'Everyone'and 'Authenticated Users' group. | [email protected] | 8.8 | 1.87% | 2021-04-27 | 2024-11-21 |
| CVE-2019-6451 | On SOYAL AR-727H and AR-829Ev5 devices, all CGI programs allow unauthenticated POST access. | [email protected] | 7.5 | 1.75% | 2019-06-06 | 2024-11-21 |