Goldshell ASIC Miners v2.1.x was discovered to contain hardcoded credentials which allow attackers to remotely connect via the SSH protocol (port 22).
Max CVSS
9.8
EPSS Score
0.21%
Published
2022-07-20
Updated
2022-07-27
Goldshell ASIC Miners v2.2.1 and below was discovered to contain a path traversal vulnerability which allows unauthenticated attackers to retrieve arbitrary files from the device.
Max CVSS
7.5
EPSS Score
0.12%
Published
2022-07-20
Updated
2022-07-27
The debug interface of Goldshell ASIC Miners v2.2.1 and below was discovered to be exposed publicly on the web interface, allowing attackers to access passwords and other sensitive information in plaintext.
Max CVSS
7.5
EPSS Score
0.13%
Published
2022-07-20
Updated
2022-07-27
The Eclipse TCF debug interface in JasMiner-X4-Server-20220621-090907 and below is open on port 1534. This issue allows unauthenticated attackers to gain root privileges on the affected device and access sensitive data or execute arbitrary commands.
Max CVSS
9.8
EPSS Score
0.22%
Published
2022-09-01
Updated
2022-09-08
InnoSilicon A10 a10_20200924_120556 was discovered to contain a remote code execution (RCE) vulnerability in the setPlatformAPI function.
Max CVSS
8.8
EPSS Score
0.28%
Published
2022-09-01
Updated
2022-09-08
InnoSilicon T3T+ t2t+_soc_20190911_151433.swu was discovered to contain a remote code execution (RCE) vulnerability in the checkUrl function.
Max CVSS
8.8
EPSS Score
0.26%
Published
2022-09-01
Updated
2022-09-08
An access control issue in Canaan Avalon ASIC Miner 2020.3.30 and below allows unauthenticated attackers to arbitrarily change user passwords via a crafted POST request.
Max CVSS
7.5
EPSS Score
0.08%
Published
2022-09-01
Updated
2022-09-08
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!