Vulnerabilities > Circutor > SGE Plc1000 Firmware > 0.9.2b
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-09 | CVE-2021-33841 | OS Command Injection vulnerability in Circutor Sge-Plc1000 Firmware 0.9.2B SGE-PLC1000 device, in its 0.9.2b firmware version, does not handle some requests correctly, allowing a remote attacker to inject code into the operating system with maximum privileges. | 9.8 |
| 2021-06-09 | CVE-2021-33842 | Reliance on Cookies without Validation and Integrity Checking vulnerability in Circutor Sge-Plc1000 Firmware 0.9.2B Improper Authentication vulnerability in the cookie parameter of Circutor SGE-PLC1000 firmware version 0.9.2b allows an attacker to perform operations as an authenticated user. | 8.8 |