CVE Tools

ecos

Hardware Firmwarecommercial

10

Cumulative CVEs

1

Monthly snapshots

#34

Peak rank

Top products

secure boot stick firmware7 system management appliance3

Latest CVEs

The 11 most recently published vulnerabilities affecting ecos.

CVE-2018-12338Undocumented Factory Backdoor in ECOS System Management Appliance (aka SMA) 5.2.68 allows the vendor to extract confidential information and manipulate security relevant configurations via remote r...9.8Jun 17, 2018
CVE-2018-12337Reliance on Security Through Obscurity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to partially extract confidential configurations via user-space emulation.4.6Jun 17, 2018
CVE-2018-12336Undocumented Factory Backdoor in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows the vendor to extract confidential information via remote root SSH access.9.8Jun 17, 2018
CVE-2018-12335Incorrect access control in ECOS System Management Appliance (aka SMA) 5.2.68 allows a user to compromise authentication keys, and access and manipulate security relevant configurations, via unrest...7.3Jun 17, 2018
CVE-2018-12334Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to compromise authentication and encryption keys via a virtualization attack.7.5Jun 17, 2018
CVE-2018-12333Insufficient Verification of Data Authenticity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to manipulate security relevant configurations and execute malicious code.8.1Jun 17, 2018
CVE-2018-12332Incomplete Cleanup vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to compromise authentication and encryption keys via a compromised host PC after a reset.4.2Jun 17, 2018
CVE-2018-12331Authentication Bypass by Spoofing vulnerability in ECOS System Management Appliance (aka SMA) 5.2.68 allows a man-in-the-middle attacker to compromise authentication keys and configurations via IP ...7.4Jun 17, 2018
CVE-2018-12330Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to compromise authentication and encryption keys via compromised firmware.8.1Jun 17, 2018
CVE-2018-12329Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows a local attacker to duplicate an authentication factor via cloning.5.9Jun 17, 2018
CVE-2017-1000020SYN Flood or FIN Flood attack in ECos 1 and other versions embedded devices results in web Authentication Bypass. "eCos Embedded Web Servers used by Multiple Routers and Home devices, while sending...9.8Jul 13, 2017