Vulnerabilities > 3Xlogic

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-01	CVE-2021-41847	Authorization Bypass Through User-Controlled Key vulnerability in 3Xlogic Infinias Access Control 6.7.10708.0 An issue was discovered in 3xLogic Infinias Access Control through 6.7.10708.0, affecting physical security. network low complexity 3xlogic CWE-639	6.5
2021-07-26	CVE-2020-12681	Improper Certificate Validation vulnerability in 3Xlogic Infinias Eidc32 Firmware 2.213 Missing TLS certificate validation on 3xLogic Infinias eIDC32 devices through 3.4.125 allows an attacker to intercept/control the channel by which door lock policies are applied. network low complexity 3xlogic CWE-295	5.0
2020-04-04	CVE-2020-11542	Improper Authentication vulnerability in 3Xlogic Infinias Eidc32 Firmware and Infinias Eidc32 web 3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side's interpretation of the <KEY>MYKEY</KEY> substring. network low complexity 3xlogic CWE-287	7.5
2019-11-14	CVE-2019-18651	Cross-Site Request Forgery (CSRF) vulnerability in 3Xlogic Infinias Access Control Firmware 6.6.9586.0 A cross-site request forgery (CSRF) vulnerability in 3xLogic Infinias Access Control through 6.6.9586.0 allows remote attackers to execute malicious and unauthorized actions (e.g., delete application users) by sending a crafted HTML document or encoded URL to a user that the website trusts. network 3xlogic CWE-352	5.8

Vulnerabilities > 3Xlogic {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"3Xlogic"}]}