National Center for Cyber Security Technology - Security Researcher

CVE-2019-6451 WRITEUP HIGH WORKING POC

Soyal Ar-727h Firmware - Missing Authentication

On SOYAL AR-727H and AR-829Ev5 devices, all CGI programs allow unauthenticated POST access.

CVSS 7.5

View Code

CVE-2019-6452 WRITEUP HIGH WRITEUP

Kyocera Command Center RX - Insufficiently Protected Credentials

Kyocera Command Center RX TASKalfa4501i and TASKalfa5052ci allows remote attackers to abuse the Test button in the machine address book to obtain a cleartext FTP or SMB password.

CVSS 8.8

View Code

CVE-2019-9871 WRITEUP CRITICAL WRITEUP

Jector Smart TV FM-K75 - RCE

Jector Smart TV FM-K75 devices allow remote code execution because there is an adb open port with root permission.

CVSS 9.8

View Code