Vulnerabilities > KMC Controls

DATE CVE VULNERABILITY TITLE RISK
2016-06-10 CVE-2016-4495 Improper Access Control vulnerability in KMC Controls Bac-5051E Firmware
KMC Controls BAC-5051E devices with firmware before E0.2.0.2 allow remote attackers to bypass intended access restrictions and read a configuration file via unspecified vectors.
network
low complexity
kmc-controls CWE-284
5.3
2016-06-10 CVE-2016-4494 Cross-Site Request Forgery (CSRF) vulnerability in KMC Controls Bac-5051E Firmware
Cross-site request forgery (CSRF) vulnerability on KMC Controls BAC-5051E devices with firmware before E0.2.0.2 allows remote attackers to hijack the authentication of unspecified victims for requests that disclose the contents of a configuration file.
network
low complexity
kmc-controls CWE-352
8.8