Vulnerabilities > Frauscher
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-11 | CVE-2023-5500 | Code Injection vulnerability in Frauscher Diagnostic System 102 This vulnerability allows an remote attacker with low privileges to misuse Improper Control of Generation of Code ('Code Injection') to gain full control of the affected device. | 8.8 |
| 2023-09-21 | CVE-2023-4152 | Path Traversal vulnerability in Frauscher Diagnostic System 101 1.3.3/1.4.24 Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and all previous versions are vulnerable to a path traversal vulnerability of the web interface by a crafted URL without authentication. | 7.5 |
| 2023-09-21 | CVE-2023-4291 | Code Injection vulnerability in Frauscher Diagnostic System 101 1.3.3/1.4.24 Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and all previous versions are vulnerable to a remote code execution (RCE) vulnerability via manipulated parameters of the web interface without authentication. This could lead to a full compromise of the FDS101 device. | 9.8 |
| 2023-09-21 | CVE-2023-4292 | SQL Injection vulnerability in Frauscher Diagnostic System 101 1.3.3/1.4.24 Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and all previous versions are vulnerable to a SQL injection vulnerability via manipulated parameters of the web interface without authentication. | 5.3 |
| 2023-07-05 | CVE-2023-2880 | Path Traversal vulnerability in Frauscher Diagnostic System 101 1.3.3 Frauscher Sensortechnik GmbH FDS001 for FAdC/FAdCi v1.3.3 and all previous versions are vulnerable to a path traversal vulnerability of the web interface by a crafted URL without authentication. | 7.5 |
| 2022-11-02 | CVE-2022-3575 | Unrestricted Upload of File with Dangerous Type vulnerability in Frauscher Diagnostic System 102 2.8.0/2.9.0/2.9.1 Frauscher Sensortechnik GmbH FDS102 for FAdC R2 and FAdCi R2 v2.8.0 to v2.9.1 are vulnerable to malicious code upload without authentication by using the configuration upload function. | 9.8 |