Spoofing

2021-05-1314:15:00

PRIOn knowledge base

www.prio-n.com

9.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.8%

JSON

In WeidmÃ¼ller u-controls and IoT-Gateways in versions up to 1.12.1 a network port intended only for device-internal usage is accidentally accessible via external network interfaces. By exploiting this vulnerability the device may be manipulated or the operation may be stopped.

CPENameOperatorVersion
iot-gw30-4g-eu_firmwarege1.3.0
iot-gw30-4g-eu_firmwarelt1.9.1
iot-gw30-4g-eu_firmwarege1.10.0
iot-gw30-4g-eu_firmwarelt1.10.3
iot-gw30-4g-eu_firmwareeq1.11.0
iot-gw30-4g-eu_firmwareeq1.12.1
iot-gw30_firmwarege1.3.0
iot-gw30_firmwarelt1.9.1
iot-gw30_firmwarege1.10.0
iot-gw30_firmwarelt1.10.3

Name	Operator	Version
iot-gw30-4g-eu_firmware	ge	1.3.0
iot-gw30-4g-eu_firmware	lt	1.9.1
iot-gw30-4g-eu_firmware	ge	1.10.0
iot-gw30-4g-eu_firmware	lt	1.10.3
iot-gw30-4g-eu_firmware	eq	1.11.0
iot-gw30-4g-eu_firmware	eq	1.12.1
iot-gw30_firmware	ge	1.3.0
iot-gw30_firmware	lt	1.9.1
iot-gw30_firmware	ge	1.10.0
iot-gw30_firmware	lt	1.10.3

Rows per page:

1-10 of 241

References

cert.vde.com/en-us/advisories/vde-2021-016