Vulnerabilities > Franklinfueling > TS 550 EVO Firmware > 2.3.0.7332

DATE CVE VULNERABILITY TITLE RISK
2017-05-01 CVE-2017-6565 Missing Authorization vulnerability in Franklinfueling Ts-550 EVO Firmware 2.3.0.7332
On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the roleDiag user, which can be obtained by exploiting CVE-2013-7247, has the ability to upload files to the server hosting the web service.
network
low complexity
franklinfueling CWE-862
8.8
8.8
2017-05-01 CVE-2017-6564 Missing Authorization vulnerability in Franklinfueling Ts-550 EVO Firmware 2.3.0.7332
On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the Guest user, which contains the lowest privileges, can post to the idSourceFileName parameter found within the /download directory.
network
low complexity
franklinfueling CWE-862
6.5
6.5