Vulnerabilities > Weidmueller

DATE CVE VULNERABILITY TITLE RISK
2021-06-25 CVE-2021-33538 Unspecified vulnerability in Weidmueller products
In Weidmueller Industrial WLAN devices in multiple versions an exploitable improper access control vulnerability exists in the iw_webs account settings functionality.
network
low complexity
weidmueller
8.8
2021-06-25 CVE-2021-33539 Unspecified vulnerability in Weidmueller products
In Weidmueller Industrial WLAN devices in multiple versions an exploitable authentication bypass vulnerability exists in the hostname processing.
network
low complexity
weidmueller
7.2
2021-05-13 CVE-2021-20999 Unspecified vulnerability in Weidmueller products
In Weidmüller u-controls and IoT-Gateways in versions up to 1.12.1 a network port intended only for device-internal usage is accidentally accessible via external network interfaces.
network
low complexity
weidmueller
critical
9.8
2021-01-22 CVE-2020-12525 Deserialization of Untrusted Data vulnerability in multiple products
M&M Software fdtCONTAINER Component in versions below 3.5.20304.x and between 3.6 and 3.6.20304.x is vulnerable to deserialization of untrusted data in its project storage.
7.8
2019-12-06 CVE-2019-16674 Use of Insufficiently Random Values vulnerability in Weidmueller products
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices.
network
low complexity
weidmueller CWE-330
critical
9.8
2019-12-06 CVE-2019-16673 Insufficiently Protected Credentials vulnerability in Weidmueller products
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices.
network
low complexity
weidmueller CWE-522
6.5
2019-12-06 CVE-2019-16672 Insufficiently Protected Credentials vulnerability in Weidmueller products
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices.
network
low complexity
weidmueller CWE-522
critical
9.8
2019-12-06 CVE-2019-16671 Resource Exhaustion vulnerability in Weidmueller products
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices.
network
low complexity
weidmueller CWE-400
6.5
2019-12-06 CVE-2019-16670 Improper Restriction of Excessive Authentication Attempts vulnerability in Weidmueller products
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices.
network
low complexity
weidmueller CWE-307
critical
9.8