CVE-2019-15311

An issue was discovered on Zolo Halo devices via the Linkplay firmware. There is Zolo Halo LAN remote code execution. The Zolo Halo Bluetooth speaker had a GoAhead web server listening on the port 80. The /httpapi.asp endpoint of the GoAhead web server was also vulnerable to multiple command execution vulnerabilities.

View Full Alert

Related Posts

  • CVE-2019-13285

    CoSoSys Endpoint Protector 5.1.0.2 allows Host Header Injection. View Full Alert

  • CVE-2019-16245

    OMERO before 5.6.1 makes the details of each user available to all users. View Full Alert

  • CVE-2019-19109

    The wpForo plugin 1.6.5 for WordPress allows wp-admin/admin.php?page=wpforo-usergroups CSRF. View Full Alert