Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Jantek Subscribe
Filtered by product Jtc-200 Firmware
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-5789 1 Jantek 2 Jtc-200, Jtc-200 Firmware 2017-11-03 6.0 MEDIUM 8.0 HIGH
A Cross-site Request Forgery issue was discovered in JanTek JTC-200, all versions. An attacker could perform actions with the same permissions as a victim user, provided the victim has an active session and is induced to trigger the malicious request.
CVE-2016-5791 1 Jantek 2 Jtc-200, Jtc-200 Firmware 2017-11-03 10.0 HIGH 9.8 CRITICAL
An Improper Authentication issue was discovered in JanTek JTC-200, all versions. The improper authentication could provide an undocumented BusyBox Linux shell accessible over the TELNET service without any authentication.