n0obit4 (Mr.EAX) - Security Researcher - Exploit Intelligence Platform

CVE-2023-49340 WRITEUP CRITICAL WRITEUP

Newland Nquire 1000 Interactive Kiosk <V1.00.011 - Privilege Escala...

An issue was discovered in Newland Nquire 1000 Interactive Kiosk version NQ1000-II_G_V1.00.011, allows remote attackers to escalate privileges and bypass authentication via incorrect access control in the web management portal.

CVSS 9.8

View Code

CVE-2023-49341 WRITEUP HIGH WRITEUP

Newland Nquire 1000 Interactive Kiosk <V1.00.011 - Info Disclosure

An issue was discovered in Newland Nquire 1000 Interactive Kiosk version NQ1000-II_G_V1.00.011, allows remote attackers to obtain sensitive information via cleartext credential storage in backup.htm component.

CVSS 7.5

View Code

CVE-2023-50015 WRITEUP HIGH WRITEUP

Grandstream GXP14XX <1.0.8.9/GXP16XX <1.0.7.13 - Privilege Escalation

An issue was discovered in Grandstream GXP14XX 1.0.8.9 and GXP16XX 1.0.7.13, allows remote attackers to escalate privileges via incorrect access control using an end-user session-identity token.

CVSS 8.8

View Code