Vulnerabilities > Zigor

DATE CVE VULNERABILITY TITLE RISK
2022-10-17 CVE-2020-8973 Unspecified vulnerability in Zigor ZGR Tps200 NG Firmware 2.00
ZGR TPS200 NG in its 2.00 firmware version and 1.01 hardware version, does not properly accept specially constructed requests.
low complexity
zigor
8.1
2022-10-17 CVE-2020-8974 Unrestricted Upload of File with Dangerous Type vulnerability in Zigor ZGR Tps200 NG Firmware 2.00
In ZGR TPS200 NG 2.00 firmware version and 1.01 hardware version, the firmware upload process does not perform any type of restriction.
network
low complexity
zigor CWE-434
critical
9.1
2022-10-17 CVE-2020-8975 Information Exposure vulnerability in Zigor ZGR Tps200 NG Firmware 2.00
ZGR TPS200 NG in its 2.00 firmware version and 1.01 hardware version, allows a remote attacker with access to the web application and knowledge of the routes (URIs) used by the application, to access sensitive information about the system.
network
low complexity
zigor CWE-200
7.5
2022-10-17 CVE-2020-8976 Cross-Site Request Forgery (CSRF) vulnerability in Zigor ZGR Tps200 NG Firmware 2.00
The integrated server of the ZGR TPS200 NG on its 2.00 firmware version and 1.01 hardware version, allows a remote attacker to perform actions with the permissions of a victim user.
network
low complexity
zigor CWE-352
8.8