Vulnerabilities > Eaton Lighting Systems

DATE CVE VULNERABILITY TITLE RISK
2016-04-06 CVE-2016-2272 Improper Access Control vulnerability in Eaton Lighting Systems EG2 web Control 4.04P
Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to have an unspecified impact via a modified cookie.
network
low complexity
eaton-lighting-systems CWE-284
7.5
2016-04-06 CVE-2016-0871 Information Exposure vulnerability in Eaton Lighting Systems EG2 web Control 4.04P
Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to read the configuration file, and consequently discover credentials, via a direct request.
network
low complexity
eaton-lighting-systems CWE-200
7.5