Vulnerabilities > CVE-2018-18881 - Unspecified vulnerability in Controlbyweb X-320M-I Firmware 1.05

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

controlbyweb

NVD

Published: 2019-03-21

Updated: 2020-08-24

Summary

A Denial of Service (DOS) issue was discovered in ControlByWeb X-320M-I Web-Enabled Instrumentation-Grade Data Acquisition module 1.05 with firmware revision v1.05. An authenticated user can configure invalid network settings, stopping TCP based communications to the device. A physical factory reset is required to restore the device to an operational state.

Vulnerable Configurations

Part	Description	Count
OS	Controlbyweb Controlbyweb X 320M I Firmware 1.05	1
Hardware	Controlbyweb Controlbyweb X 320M I -	1

References

https://applied-risk.com/labs/advisories
http://www.securityfocus.com/bid/106655