Vulnerabilities > Emerson

DATE CVE VULNERABILITY TITLE RISK
2021-09-29 CVE-2020-12030 Incorrect Authorization vulnerability in Emerson products
There is a flaw in the code used to configure the internal gateway firewall when the gateway's VLAN feature is enabled.
network
emerson CWE-863
6.8
2021-07-30 CVE-2021-29297 Classic Buffer Overflow vulnerability in Emerson Proficy Machine Edition 8.0
Buffer Overflow in Emerson GE Automation Proficy Machine Edition v8.0 allows an attacker to cause a denial of service and application crash via crafted traffic from a Man-in-the-Middle (MITM) attack to the component "FrameworX.exe" in the module "MSVCR100.dll".
network
high complexity
emerson CWE-120
2.6
2021-07-30 CVE-2021-29298 Improper Input Validation vulnerability in Emerson Proficy Machine Edition 8.0
Improper Input Validation in Emerson GE Automation Proficy Machine Edition v8.0 allows an attacker to cause a denial of service and application crash via crafted traffic from a Man-in-the-Middle (MITM) attack to the component "FrameworX.exe"in the module "fxVPStatcTcp.dll".
network
high complexity
emerson CWE-20
2.6
2021-05-20 CVE-2021-27457 Inadequate Encryption Strength vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-326
5.0
2021-05-20 CVE-2021-27459 Unrestricted Upload of File with Dangerous Type vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-434
7.5
2021-05-20 CVE-2021-27461 Path Traversal vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-22
5.0
2021-05-20 CVE-2021-27463 Information Exposure Through Persistent Cookies vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-539
5.0
2021-05-20 CVE-2021-27465 Cross-site Scripting vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
emerson CWE-79
4.3
2021-05-20 CVE-2021-27467 Improper Restriction of Rendered UI Layers or Frames vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
emerson CWE-1021
5.8
2021-03-10 CVE-2020-19419 Improper Authentication vulnerability in Emerson Smart Wireless Gateway 1420 Firmware 4.6.59
Incorrect Access Control in Emerson Smart Wireless Gateway 1420 4.6.59 allows remote attackers to obtain sensitive device information from the administrator console without authentication.
network
low complexity
emerson CWE-287
5.0