Vulnerabilities > 3Xlogic > Infinias Eidc32 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-26 | CVE-2020-12681 | Improper Certificate Validation vulnerability in 3Xlogic Infinias Eidc32 Firmware 2.213/3.4.125 Missing TLS certificate validation on 3xLogic Infinias eIDC32 devices through 3.4.125 allows an attacker to intercept/control the channel by which door lock policies are applied. | 7.5 |
| 2020-04-04 | CVE-2020-11542 | Cleartext Transmission of Sensitive Information vulnerability in 3Xlogic Infinias Eidc32 Firmware and Infinias Eidc32 web 3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side's interpretation of the <KEY>MYKEY</KEY> substring. | 9.8 |