GCVE - cpe:2.3:a:byzoro:smart_s150_management

Approved changes feed: RSS · Atom

cpe:2.3:a:byzoro:smart_s150_management_platform:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Byzoro (`c0149b13-575d-5f46-8433-80a5a52dd1d3`)
Product	Smart S150 Management Platform (`e86ec72b-b3a7-570b-9e91-609fde234203`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-0716`	vulnerable	2026-06-03 14:54:03.334103	Byzoro Smart S150 Management Platform Backup File download.php information disclosure LOW (3.1) A vulnerability classified as problematic has been found in Byzoro Smart S150 Management Platform V31R02B15. This affects an unknown part of the file /log/download.php of the component Backup File Handler. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The identifier VDB-251541 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Published: 2024-01-19T15:00:05.792Z Updated: 2024-10-21T11:31:56.228Z Open on db.gcve.eu Reference links https://vuldb.com/?id.251541 https://vuldb.com/?ctiid.251541 https://vuldb.com/?submit.265177 https://github.com/GTA12138/vul/blob/main/smart%20s150/s150%20Download%20any%20file/smart%20s150%20download%20any%20file.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-0712`	vulnerable	2026-06-03 14:54:03.326736	Byzoro Smart S150 Management Platform userattea.php access control HIGH (7.3) A vulnerability was found in Byzoro Smart S150 Management Platform V31R02B15. It has been classified as critical. Affected is an unknown function of the file /useratte/inc/userattea.php. The manipulation leads to improper access controls. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-251538 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Published: 2024-01-19T13:31:04.512Z Updated: 2024-08-26T18:21:22.473Z Open on db.gcve.eu Reference links https://vuldb.com/?id.251538 https://vuldb.com/?ctiid.251538 https://vuldb.com/?submit.264497 https://github.com/GTA12138/vul/blob/main/smart%20s150/2024-1-9%20smart%20s150%20101508.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-0300`	vulnerable	2026-06-03 14:54:02.088601	Byzoro Smart S150 Management Platform HTTP POST Request userattestation.php unrestricted upload MEDIUM (6.3) A vulnerability was found in Byzoro Smart S150 Management Platform up to 20240101. It has been rated as critical. Affected by this issue is some unknown functionality of the file /useratte/userattestation.php of the component HTTP POST Request Handler. The manipulation of the argument web_img leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-249866 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Published: 2024-01-08T06:00:04.028Z Updated: 2024-09-04T19:16:07.984Z Open on db.gcve.eu Reference links https://vuldb.com/?id.249866 https://vuldb.com/?ctiid.249866 https://vuldb.com/?submit.260962 https://github.com/tolkent/cve/blob/main/upload.md	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Smart S150 Management Platform

PURL mappings

Vulnerability references

Contribute