NetopCVEs & Vulnerabilities

6 CVEs affecting Netop products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

vision pro 5remote control 1
CVE-2021-36134MEDIUM

Out of bounds write vulnerability in the JPEG parsing code of Netop Vision Pro up to and including 9.7.2 allows an adjacent unauthenticated attacker to write to arbitrary memory potentially leading to a Denial of Service (DoS).

27 Sep 2021
6.5
CVSS
CVE-2021-27195MEDIUM

Improper Authorization vulnerability in Netop Vision Pro up to and including to 9.7.1 allows an attacker to replay network traffic.

25 Mar 2021
5.9
CVSS
CVE-2021-27194HIGH

Cleartext transmission of sensitive information in Netop Vision Pro up to and including 9.7.1 allows a remote unauthenticated attacker to gather credentials including Windows login usernames and passwords.

25 Mar 2021
8.8
CVSS
CVE-2021-27193CRITICAL

Incorrect default permissions vulnerability in the API of Netop Vision Pro up to and including 9.7.1 allows a remote unauthenticated attacker to read and write files on the remote machine with system privileges resulting in a privilege escalation.

25 Mar 2021
9.8
CVSS
CVE-2021-27192HIGH

Local privilege escalation vulnerability in Windows clients of Netop Vision Pro up to and including 9.7.1 allows a local user to gain administrator privileges whilst using the clients.

25 Mar 2021
7.8
CVSS
CVE-2017-5216MEDIUM

Stack-based buffer overflow vulnerability in Netop Remote Control versions 11.53, 12.21 and prior. The affected module in the Guest client is the "Import to Phonebook" option. When a specially designed malicious file containing special characters is loaded, the overflow occurs. 12.51 is the fixed version. The Support case ref is 00109744.

9 Jan 2017
5.5
CVSS
← PrevPage 1 / 1Next →