Vulnerabilities > Franklinfueling > TS 550 EVO
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-01-26 | CVE-2013-7248 | Credentials Management vulnerability in Franklinfueling Ts-550 EVO and Ts-550 EVO Firmware Franklin Fueling Systems TS-550 evo with firmware 2.0.0.6833 and other versions before 2.4.0 has a hardcoded password for the roleDiag account, which allows remote attackers to gain root privileges, as demonstrated using a cmdWebCheckRole action in a TSA_REQUEST. | 10.0 |
2014-01-26 | CVE-2013-7247 | Permissions, Privileges, and Access Controls vulnerability in Franklinfueling Ts-550 EVO and Ts-550 EVO Firmware cgi-bin/tsaws.cgi in Franklin Fueling Systems TS-550 evo with firmware 2.0.0.6833 and other versions before 2.4.0 allows remote attackers to discover sensitive information (user names and password hashes) via the cmdWebGetConfiguration action in a TSA_REQUEST. | 5.0 |