Vulnerabilities (CVE)

Filtered by vendor Juracapecoffee Subscribe
Filtered by product Internet Connectivity Kit
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-7173 1 Juracapecoffee 2 Internet Connectivity Kit, Jura Impressa 2024-02-04 10.0 HIGH N/A
The Jura Internet Connection Kit for the Jura Impressa F90 coffee maker does not properly restrict access to privileged functions, which allows remote attackers to cause a denial of service (physical damage), modify coffee settings, and possibly execute code via a crafted request. NOTE: this issue is being included in CVE because the denial of service may include financial loss or water damage.
CVE-2008-7174 1 Juracapecoffee 2 Internet Connectivity Kit, Jura Impressa 2024-02-04 10.0 HIGH N/A
Multiple buffer overflows in the Jura Internet Connection Kit for the Jura Impressa F90 coffee maker allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors related to improper use of the gets and sprintf functions.