Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16356)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from the hard disk not using full volume encryption, which can be exploited by an attacker to bypas...

Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from a missing Secure attribute, which can be exploited by an attacker to cause session hijacking...

Endress+Hauser MEAC300-FNADE4 Cross-Site Scripting Vulnerability

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. The Endress+Hauser MEAC300-FNADE4 is vulnerable to a cross-site scripting vulnerability due to improper validation of user input via dashboard name. An attacker could exploit the...

Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16347)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4, which stems from an Apache misconfiguration, and can be exploited by an attacker to cause a directory to be...

Endress+Hauser MEAC300-FNADE4 Cross-Site Scripting Vulnerability (CNVD-2025-16357)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. The Endress+Hauser MEAC300-FNADE4 suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of user-supplied dat...

Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16349)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from the reuse of the same credentials across multiple services and different scopes within the sam...

Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16348)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from the use of DES encryption to store passwords, which can be exploited by an attacker to cause...

Endress+Hauser MEAC300-FNADE4 Information Disclosure Vulnerability (CNVD-2025-16353)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4, which stems from the fact that all communications are not encrypted, and can be exploited by an attacker to...

Endress+Hauser MEAC300-FNADE4 Cross-Site Request Forgery Vulnerability

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. The Endress+Hauser MEAC300-FNADE4 suffers from a cross-site request forgery vulnerability that arises from a WEB application that does not adequately validate that a request is...

Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16359)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from an error message discrepancy that can be exploited by an attacker to cause username enumeratio...

Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16355)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from an insufficient authentication attempt limit and can be exploited by an attacker to cause a...

Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16350)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from the HttpOnly flag not being set, which can be exploited by an attacker to cause session...

Endress+Hauser MEAC300-FNADE4 Information Disclosure Vulnerability (CNVD-2025-16346)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. An information disclosure vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from the authentication mechanism based on the challenge response system using the...

Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16343)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that originates from automatically logging in an EPC2 Windows user at startup without entering a password. An...

Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16351)

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from an insufficient authentication attempt limit and can be exploited by an attacker to cause a...

CVE-2025-27449

The MEAC300-FNADE4 does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it susceptible to brute-force attacks...

CVE-2025-27452

The configuration of the Apache httpd webserver which serves the MEAC300-FNADE4 web application, is partly insecure. There are modules activated that are not required for the operation of the FNADE4 web application. The functionality of the some modules pose a risk to the webserver which enable...

Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4

Several vulnerabilities in the Endress+Hauser MEAC300-FNADE4 were discovered, that can be accessed via Ethernet...

CVE-2025-27452

The configuration of the Apache httpd webserver which serves the MEAC300-FNADE4 web application, is partly insecure. There are modules activated that are not required for the operation of the FNADE4 web application. The functionality of the some modules pose a risk to the webserver which enable...

CVE-2025-27450

The Secure attribute is missing on multiple cookies provided by the MEAC300-FNADE4. An attacker can trick a user to establish an unencrypted HTTP connection to the server and intercept the request containing the PHPSESSID cookie...