Vulnerabilities > CVE-2018-18881 - Unspecified vulnerability in Controlbyweb X-320M-I Firmware

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

controlbyweb

NVD

Published: 2019-03-21

Updated: 2020-08-24

Summary

A Denial of Service (DOS) issue was discovered in ControlByWeb X-320M-I Web-Enabled Instrumentation-Grade Data Acquisition module 1.05 with firmware revision v1.05. An authenticated user can configure invalid network settings, stopping TCP based communications to the device. A physical factory reset is required to restore the device to an operational state.

Vulnerable Configurations

Part	Description	Count
OS	Controlbyweb Controlbyweb X 320M I Firmware *	1
Hardware	Controlbyweb Controlbyweb X 320M I -	1

References

http://www.securityfocus.com/bid/106655
https://applied-risk.com/labs/advisories