Vulnerabilities > Digitus > DA 70254 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-07 | CVE-2020-15063 | Improper Authentication vulnerability in Digitus Da-70254 Firmware 2.073.000.E0008 DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to bypass authentication via a web-administration request that lacks a password parameter. | 8.8 |
| 2020-08-07 | CVE-2020-15062 | Insufficiently Protected Credentials vulnerability in Digitus Da-70254 Firmware 2.073.000.E0008 DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unencrypted UDP traffic. | 8.8 |