Vulnerabilities > Carlosgavazzi
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-02-13 | CVE-2017-5146 | Information Exposure vulnerability in Carlosgavazzi Vmu-C EM Firmware and Vmu-C PV Firmware An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. | 5.0 |
2017-02-13 | CVE-2017-5145 | Cross-Site Request Forgery (CSRF) vulnerability in Carlosgavazzi Vmu-C EM Firmware and Vmu-C PV Firmware An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. | 7.5 |
2017-02-13 | CVE-2017-5144 | Multiple Security vulnerability in Multiple Carlo Gavazzi Products ICSA-17-012-03 An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. | 7.5 |
2012-12-23 | CVE-2012-6428 | Credentials Management vulnerability in Carlosgavazzi products Carlo Gavazzi EOS-Box with firmware before 1.0.0.1080_2.1.10 establishes multiple hardcoded accounts, which makes it easier for remote attackers to obtain administrative access by reading a password in a PHP script, a similar issue to CVE-2012-5862. | 10.0 |
2012-12-23 | CVE-2012-6427 | SQL Injection vulnerability in Carlosgavazzi products Multiple SQL injection vulnerabilities in Carlo Gavazzi EOS-Box with firmware before 1.0.0.1080_2.1.10 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, a similar issue to CVE-2012-5861. | 7.5 |