Vulnerabilities > Weidmueller > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-12-14 CVE-2022-3073 Cross-site Scripting vulnerability in Weidmueller products
Quanos "SCHEMA ST4" example web templates in version Bootstrap 2019 v2/2021 v1/2022 v1/2022 SP1 v1 or below are prone to JavaScript injection allowing a remote attacker to hijack existing sessions to e.g.
network
low complexity
weidmueller CWE-79
6.1
6.1
2019-12-06 CVE-2019-16673 Insufficiently Protected Credentials vulnerability in Weidmueller products
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices.
network
low complexity
weidmueller CWE-522
6.5
6.5
2019-12-06 CVE-2019-16671 Resource Exhaustion vulnerability in Weidmueller products
An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices.
network
low complexity
weidmueller CWE-400
6.5
6.5