Vulnerabilities > Exemys

DATE CVE VULNERABILITY TITLE RISK
2022-06-30 CVE-2022-2197 Improper Authentication vulnerability in Exemys Rme1 Firmware
By using a specific credential string, an attacker with network access to the device’s web interface could circumvent the authentication scheme and perform administrative operations.
network
low complexity
exemys CWE-287
critical
10.0
2015-11-19 CVE-2015-7910 Improper Access Control vulnerability in Exemys Telemetry web Server
Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is unauthorized, which allows remote attackers to bypass intended access restrictions by disregarding this header and processing the response body.
network
low complexity
exemys CWE-284
7.8