Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-02-13 | CVE-2017-5157 | Cross-site Scripting vulnerability in Schneider Electric Homelynk Controller Lss100100 Firmware 1.3.0 An issue was discovered in Schneider Electric homeLYnk Controller, LSS100100, all versions prior to V1.5.0. | 6.1 |
| 2017-02-13 | CVE-2017-5141 | Session Fixation vulnerability in Honeywell XL web II Controller Xlwebexe10208/Xlwebexe20100 An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior, and XLWeb 500 XLWebExe-1-02-08 and prior. | 6.0 |
| 2017-02-13 | CVE-2016-9371 | Cross-site Scripting vulnerability in Moxa products An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. | 6.1 |
| 2017-02-13 | CVE-2016-9360 | Insufficiently Protected Credentials vulnerability in GE Cimplicity An issue was discovered in General Electric (GE) Proficy HMI/SCADA iFIX Version 5.8 SIM 13 and prior versions, Proficy HMI/SCADA CIMPLICITY Version 9.0 and prior versions, and Proficy Historian Version 6.0 and prior versions. | 6.7 |
| 2017-02-13 | CVE-2016-9357 | Path Traversal vulnerability in Eaton products An issue was discovered in certain legacy Eaton ePDUs -- the affected products are past end-of-life (EoL) and no longer supported: EAMxxx prior to June 30, 2015, EMAxxx prior to January 31, 2014, EAMAxx prior to January 31, 2014, EMAAxx prior to January 31, 2014, and ESWAxx prior to January 31, 2014. | 5.3 |
| 2017-02-13 | CVE-2016-9354 | Resource Management Errors vulnerability in Moxa Dacenter 1.4 An issue was discovered in Moxa DACenter Versions 1.4 and older. | 5.5 |
| 2017-02-13 | CVE-2016-9347 | 7PK - Security Features vulnerability in Emerson products An issue was discovered in Emerson SE4801T0X Redundant Wireless I/O Card V13.3, and SE4801T1X Simplex Wireless I/O Card V13.3. | 5.0 |
| 2017-02-13 | CVE-2016-9346 | Cryptographic Issues vulnerability in Moxa products An issue was discovered in Moxa MiiNePort E1 versions prior to 1.8, E2 versions prior to 1.4, and E3 versions prior to 1.1. | 5.3 |
| 2017-02-13 | CVE-2016-9345 | Permissions, Privileges, and Access Controls vulnerability in Emerson Deltav 12.3/12.3.1/13.3 An issue was discovered in Emerson DeltaV Easy Security Management DeltaV V12.3, DeltaV V12.3.1, and DeltaV V13.3. | 6.8 |
| 2017-02-13 | CVE-2016-9339 | Path Traversal vulnerability in Macgregor Interschalt VDR G4E Firmware 5.220 An issue was discovered in INTERSCHALT Maritime Systems VDR G4e Versions 5.220 and prior. | 5.3 |