Vulnerabilities > Efacec > BCU 500 Firmware > 4.07
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-20 | CVE-2023-50707 | Resource Exhaustion vulnerability in Efacec BCU 500 Firmware 4.07 Through the exploitation of active user sessions, an attacker could send custom requests to cause a denial-of-service condition on the device. | 7.5 |
| 2023-12-20 | CVE-2023-6689 | Cross-Site Request Forgery (CSRF) vulnerability in Efacec BCU 500 Firmware 4.07 A successful CSRF attack could force the user to perform state changing requests on the application. | 8.8 |