RSS   Podatności dla 'Circarlife firmware'   RSS

2018-11-02
 
CVE-2018-17922

CWE-532
 

 
Circontrol CirCarLife all versions prior to 4.3.1, the PAP credentials of the device are stored in clear text in a log file that is accessible without authentication.

 
 
CVE-2018-17918

CWE-287
 

 
Circontrol CirCarLife all versions prior to 4.3.1, authentication to the device can be bypassed by entering the URL of a specific page.

 
2018-09-26
 
CVE-2018-16672

CWE-200
 

 
An issue was discovered in CIRCONTROL CirCarLife before 4.3. Due to the storage of multiple sensitive information elements in a JSON format at /services/system/setup.json, an authenticated but unprivileged user can exfiltrate critical setup information.

 
2018-09-18
 
CVE-2018-16668

CWE-200
 

 
An issue was discovered in CIRCONTROL CirCarLife before 4.3. There is internal installation path disclosure due to the lack of authentication for /html/repository.

 

 >>> Vendor: Circontrol 2 Produkty
Scada
Circarlife firmware


Copyright 2024, cxsecurity.com

 

Back to Top