Vulnerabilities > Emerson
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-30 | CVE-2021-29297 | Classic Buffer Overflow vulnerability in Emerson Proficy Machine Edition 8.0 Buffer Overflow in Emerson GE Automation Proficy Machine Edition v8.0 allows an attacker to cause a denial of service and application crash via crafted traffic from a Man-in-the-Middle (MITM) attack to the component "FrameworX.exe" in the module "MSVCR100.dll". | 2.6 |
| 2021-07-30 | CVE-2021-29298 | Improper Input Validation vulnerability in Emerson Proficy Machine Edition 8.0 Improper Input Validation in Emerson GE Automation Proficy Machine Edition v8.0 allows an attacker to cause a denial of service and application crash via crafted traffic from a Man-in-the-Middle (MITM) attack to the component "FrameworX.exe"in the module "fxVPStatcTcp.dll". | 2.6 |
| 2021-05-20 | CVE-2021-27457 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Emerson products A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. | 5.0 |
| 2021-05-20 | CVE-2021-27459 | Unrestricted Upload of File with Dangerous Type vulnerability in Emerson products A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. | 7.5 |
| 2021-05-20 | CVE-2021-27461 | Path Traversal vulnerability in Emerson products A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. | 5.0 |
| 2021-05-20 | CVE-2021-27463 | Information Exposure Through Persistent Cookies vulnerability in Emerson products A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. | 5.0 |
| 2021-05-20 | CVE-2021-27465 | Cross-site Scripting vulnerability in Emerson products A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. | 4.3 |
| 2021-05-20 | CVE-2021-27467 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Emerson products A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. | 5.8 |
| 2021-03-10 | CVE-2020-19419 | Missing Authentication for Critical Function vulnerability in Emerson Smart Wireless Gateway 1420 Firmware 4.6.59 Incorrect Access Control in Emerson Smart Wireless Gateway 1420 4.6.59 allows remote attackers to obtain sensitive device information from the administrator console without authentication. | 7.5 |
| 2021-03-10 | CVE-2020-19417 | Unspecified vulnerability in Emerson Wireless 1420 Gateway Firmware 4.6.59 Emerson Smart Wireless Gateway 1420 4.6.59 allows non-privileged users (such as the default account 'maint') to perform administrative tasks by sending specially crafted HTTP requests to the application. | 9.0 |