Jantek » Jtc-200 Firmware : Security Vulnerabilities, CVEs,
An Improper Authentication issue was discovered in JanTek JTC-200, all versions. The improper authentication could provide an undocumented BusyBox Linux shell accessible over the TELNET service without any authentication.
Max CVSS
10.0
EPSS Score
0.21%
Published
2017-10-13
Updated
2017-11-03
A Cross-site Request Forgery issue was discovered in JanTek JTC-200, all versions. An attacker could perform actions with the same permissions as a victim user, provided the victim has an active session and is induced to trigger the malicious request.
Max CVSS
8.0
EPSS Score
0.06%
Published
2017-10-13
Updated
2017-11-03
2 vulnerabilities found