CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

NVD•added 2015/12/23 11:59 a.m.•11 views

CVE-2015-7927

Cross-site scripting XSS vulnerability on eWON devices with firmware through 10.1s0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS6.3AI score0.00811EPSS

Exploits1References5

ATTACKERKB•added 2015/12/23 11:59 a.m.•1 views

CVE-2015-7926

eWON devices with firmware before 10.1s0 omit RBAC for I/O server information and status requests, which allows remote attackers to obtain sensitive information via an unspecified URL...

9.9CVSS5.5AI score0.0137EPSS

Exploits1References6

ATTACKERKB•added 2015/12/23 11:59 a.m.•2 views

CVE-2015-7929

eWON devices with firmware through 10.1s0 support unspecified GET requests, which might allow remote attackers to obtain sensitive information by reading 1 web-server access logs, 2 web-server Referer logs, or 3 the browser history...

5CVSS5.6AI score0.01149EPSS

Exploits1References6

ATTACKERKB•added 2015/12/23 11:59 a.m.•1 views

CVE-2015-7927

Cross-site scripting XSS vulnerability on eWON devices with firmware through 10.1s0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS5.7AI score0.00811EPSS

Exploits1References6

CVE•added 2015/12/23 11:0 a.m.•34 views

CVE-2015-7927

CVE-2015-7927 is a stored cross-site scripting (XSS) vulnerability in eWON industrial routers running firmware up to 10.1s0. The issue enables remote attackers to inject arbitrary web script or HTML via unspecified vectors in the device’s web interface. Affected product line is eWON routers; firm...

6.1CVSS6AI score0.00811EPSS

Exploits1References5Affected Software1

CNVD•added 2015/12/23 12:0 a.m.•1 views

eWON Cross-Site Request Forgery Vulnerability

eWON is an industrial router product from eWON Belgium. A cross-site request forgery vulnerability exists in eWON using firmware versions prior to 10.1s0. An attacker could exploit this vulnerability to perform unauthorized operations with user privileges...

8CVSS6.8AI score0.00132EPSS

Exploits1References1

CNVD•added 2015/12/23 12:0 a.m.•1 views

eWON Weak Session Management Vulnerability

eWON is an industrial router product from eWON Belgium. A security vulnerability exists in eWON using firmware versions prior to 10.1s0, which stems from the program retaining a session after a user logs out and logs in. An attacker could exploit the vulnerability to interact with the device usin...

8.8CVSS6.7AI score0.01927EPSS

Exploits1References1

CNVD•added 2015/12/23 12:0 a.m.•1 views

eWON Cross-Site Scripting Vulnerability

eWON is an industrial router product from eWON Belgium. A cross-site scripting vulnerability exists in eWON using firmware versions prior to 10.1s0. An attacker can exploit this vulnerability to execute arbitrary script or HTML code on a web server or application...

6.1CVSS6.5AI score0.00811EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by