Vulnerabilities > Codewrights

DATE CVE VULNERABILITY TITLE RISK
2015-09-28 CVE-2015-6463 CodeWrights HART Comm DTM components, as used with Endress+Hauser FieldCare, allow remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via a longtag XML schema containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
low complexity
codewrights endress-hauser
5.8
2015-01-10 CVE-2014-9191 Resource Management Errors vulnerability in Codewrights Hart Device Type Manager 1.0.44
The CodeWrights HART Device Type Manager (DTM) library in Emerson HART DTM before 1.4.181 allows physically proximate attackers to cause a denial of service (DTM outage and FDT Frame application hang) by transmitting crafted response packets on the 4-20 mA current loop.
local
low complexity
codewrights CWE-399
2.1