Browse all 3 CVE security advisories affecting Gigastone. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Gigastone develops and manufactures storage solutions, including USB drives, memory cards, and SSDs, primarily for consumer and industrial applications. Historically, their products have been associated with multiple remote code execution vulnerabilities, often stemming from insecure firmware updates and default credentials. The company has three CVEs on record, with issues including command injection and privilege escalation flaws. While no major public security incidents have been documented, the recurring nature of these vulnerabilities suggests potential weaknesses in their development lifecycle. Security researchers have noted that some Gigastone devices contain hardcoded credentials and lack proper input validation, creating exploitable entry points for attackers.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-15067 | An authentication bypass vulnerability discovered in Smart Battery A2-25DE — Smart Battery A2-25DE | 9.8 | - | 2019-09-25 |
| CVE-2019-15068 | A broken access control vulnerability discovered in Smart Battery A4 — Smart Battery A4CWE-284 | 9.1 | - | 2019-09-25 |
| CVE-2019-15069 | An unsafe authentication interface was discovered in Smart Battery A4 — Smart Battery A4 | 8.2 | - | 2019-09-25 |
This page lists every published CVE security advisory associated with Gigastone. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.