Vulnerabilities > ARM > Arm7 > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-10-08 | CVE-2018-5402 | Cryptographic Issues vulnerability in Auto-Maskin products The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App use an embedded webserver that uses unencrypted plaintext for the transmission of the administrator PIN Impact: An attacker once authenticated can change configurations, upload new configuration files, and upload executable code via file upload for firmware updates. | 6.5 |
2018-10-08 | CVE-2018-5401 | Cleartext Transmission of Sensitive Information vulnerability in Auto-Maskin products The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App transmit sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. | 4.3 |
2018-10-08 | CVE-2018-5400 | Origin Validation Error vulnerability in Auto-Maskin DCU 210E Firmware and RP 210E Firmware The Auto-Maskin products utilize an undocumented custom protocol to set up Modbus communications with other devices without validating those devices. | 6.4 |