Vulnerabilities > Weidmueller > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-05-13 CVE-2021-20999 Unspecified vulnerability in Weidmueller products
In Weidmüller u-controls and IoT-Gateways in versions up to 1.12.1 a network port intended only for device-internal usage is accidentally accessible via external network interfaces.
network
low complexity
weidmueller
critical
9.8
2019-12-06 CVE-2019-16674 Use of Insufficiently Random Values vulnerability in Weidmueller products
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices.
network
low complexity
weidmueller CWE-330
critical
9.8
2019-12-06 CVE-2019-16672 Insufficiently Protected Credentials vulnerability in Weidmueller products
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices.
network
low complexity
weidmueller CWE-522
critical
9.8
2019-12-06 CVE-2019-16670 Improper Restriction of Excessive Authentication Attempts vulnerability in Weidmueller products
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices.
network
low complexity
weidmueller CWE-307
critical
9.8