Vulnerabilities > Cdatatec

DATE CVE VULNERABILITY TITLE RISK
2020-11-24 CVE-2020-29056 OS Command Injection vulnerability in multiple products
An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices.
network
low complexity
cdatatec cdata CWE-78
critical
 9.8
9.8
2020-11-24 CVE-2020-29055 Cleartext Transmission of Sensitive Information vulnerability in Cdatatec products
An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices.
network
high complexity
cdatatec CWE-319
5.9
5.9
2020-11-24 CVE-2020-29054 Insufficiently Protected Credentials vulnerability in Cdatatec products
An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices.
network
low complexity
cdatatec CWE-522
critical
 9.8
9.8
2019-01-03 CVE-2018-20512 Reliance on Cookies without Validation and Integrity Checking vulnerability in Cdatatec Epon Cpe-Wifi Devices Firmware 2.0.4X000
EPON CPE-WiFi devices 2.0.4-X000 are vulnerable to escalation of privileges by sending cooLogin=1, cooUser=admin, and timestamp=-1 cookies.
network
low complexity
cdatatec CWE-565
critical
 9.8
9.8