Vulnerabilities > Cdatatec > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-01 | CVE-2022-4257 | OS Command Injection vulnerability in Cdatatec C-Data web Management System A vulnerability was found in C-DATA Web Management System. | 9.8 |
| 2022-05-24 | CVE-2022-29337 | OS Command Injection vulnerability in Cdatatec Fd702Xw-X-R430 Firmware 2.1.13X001 C-DATA FD702XW-X-R430 v2.1.13_X001 was discovered to contain a command injection vulnerability via the va_cmd parameter in formlanipv6. | 9.8 |
| 2020-11-24 | CVE-2020-29056 | Command Injection vulnerability in multiple products An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. | 10.0 |
| 2019-01-03 | CVE-2018-20512 | Reliance on Cookies without Validation and Integrity Checking vulnerability in Cdatatec Epon Cpe-Wifi Devices Firmware 2.0.4X000 EPON CPE-WiFi devices 2.0.4-X000 are vulnerable to escalation of privileges by sending cooLogin=1, cooUser=admin, and timestamp=-1 cookies. | 10.0 |