Vulnerabilities > Emerson > X Stream Enhanced Xexf Firmware

DATE CVE VULNERABILITY TITLE RISK
2021-05-20 CVE-2021-27457 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-327
5.0
5.0
2021-05-20 CVE-2021-27459 Unrestricted Upload of File with Dangerous Type vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-434
7.5
7.5
2021-05-20 CVE-2021-27461 Path Traversal vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-22
5.0
5.0
2021-05-20 CVE-2021-27463 Information Exposure Through Persistent Cookies vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
low complexity
emerson CWE-539
5.0
5.0
2021-05-20 CVE-2021-27465 Cross-site Scripting vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
emerson CWE-79
4.3
4.3
2021-05-20 CVE-2021-27467 Improper Restriction of Rendered UI Layers or Frames vulnerability in Emerson products
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer.
network
emerson CWE-1021
5.8
5.8
2020-12-21 CVE-2020-27254 Improper Authentication vulnerability in Emerson products
Emerson Rosemount X-STREAM Gas AnalyzerX-STREAM enhanced XEGP, XEGK, XEFD, XEXF – all revisions, The affected products are vulnerable to improper authentication for accessing log and backup data, which could allow an attacker with a specially crafted URL to obtain access to sensitive information.
network
low complexity
emerson CWE-287
5.0
5.0