Skip to main content

Posts

Showing posts from August, 2020
We are happy to announce that Ingenico has fixed vulnerabilities, discovered by our team.Ingenico (Telium2 OS):CVE-2018-17767 - Hardcoded PPP credentials. CVSS v3.1 Base Score: 5.1, Vector AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:LCVE-2018-17771 - Hardcoded FTP credentials. CVSS v3.1 Base Score: 4.9, Vector AV:P/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:LCVE-2018-17774 - Insecure NTPT3 protocol. CVSS v3.1 Base Score: 4.9, Vector AV:P/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:LCVE-2018-17768 - Insecure TRACE protocol. CVSS v3.1 Base Score: 5.1, Vector AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:LCVE-2018-17765 - Undeclared TRACE protocol commands. CVSS v3.1 Base Score: 3.8, Vector AV:P/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:NCVE-2018-17766 - NTPT3 protocol - file reading restrictions bypass. CVSS v3.1 Base Score: 2.4, Vector AV:P/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:NCVE-2018-17769 - Buffer overflow via the 0x26 command of the NTPT3 protocol. CVSS v3.1 Base Score: 4.9, Vector AV:P/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:LCVE-2018-17770 - Buffer overflow v…