Vulnerabilities > Unitronics > Unilogic
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-18 | CVE-2024-27767 | Unspecified vulnerability in Unitronics Unilogic CWE-287: Improper Authentication may allow Authentication Bypass | 9.8 |
| 2024-03-18 | CVE-2024-27768 | Unspecified vulnerability in Unitronics Unilogic Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE | 9.8 |
| 2024-03-18 | CVE-2024-27769 | Unspecified vulnerability in Unitronics Unilogic Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor may allow Taking Ownership Over Devices | 8.8 |
| 2024-03-18 | CVE-2024-27770 | Path Traversal vulnerability in Unitronics Unilogic Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-23: Relative Path Traversal | 8.8 |
| 2024-03-18 | CVE-2024-27771 | Unspecified vulnerability in Unitronics Unilogic Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE | 8.8 |
| 2024-03-18 | CVE-2024-27772 | Unspecified vulnerability in Unitronics Unilogic Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may allow RCE | 8.8 |
| 2024-03-18 | CVE-2024-27773 | Insufficient Verification of Data Authenticity vulnerability in Unitronics Unilogic Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-348: Use of Less Trusted Source may allow RCE | 8.8 |
| 2024-03-18 | CVE-2024-27774 | Use of Hard-coded Credentials vulnerability in Unitronics Unilogic Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-259: Use of Hard-coded Password may allow disclosing Sensitive Information Embedded inside Device's Firmware | 6.5 |