Vulnerabilities > Emerson > X Stream Enhanced Xegk Firmware

DATE CVE VULNERABILITY TITLE RISK
2021-05-20 CVE-2021-27457 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-327
7.5
2021-05-20 CVE-2021-27459 Unrestricted Upload of File with Dangerous Type vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-434
critical
9.8
2021-05-20 CVE-2021-27461 Path Traversal vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-22
7.5
2021-05-20 CVE-2021-27463 Information Exposure Through Persistent Cookies vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-539
5.3
2021-05-20 CVE-2021-27465 Cross-site Scripting vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-79
6.1
2021-05-20 CVE-2021-27467 Improper Restriction of Rendered UI Layers or Frames vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-1021
6.1
2020-12-21 CVE-2020-27254 Improper Authentication vulnerability in Emerson products
Emerson Rosemount X-STREAM Gas AnalyzerX-STREAM enhanced XEGP, XEGK, XEFD, XEXF – all revisions, The affected products are vulnerable to improper authentication for accessing log and backup data, which could allow an attacker with a specially crafted URL to obtain access to sensitive information.
network
low complexity
emerson CWE-287
7.5