EUVD-2025-30196

Malicious code in bioql PyPI...

EUVD-2025-30192

Malicious code in bioql PyPI...

CVE-2025-30519

Dover Fueling Solutions ProGauge MagLink LX4 Devices have default root credentials that cannot be changed through standard administrative means. An attacker with network access to the device can gain administrative access to the system...

CVE-2025-30519

Dover Fueling Solutions ProGauge MagLink LX4 Devices have default root credentials that cannot be changed through standard administrative means. An attacker with network access to the device can gain administrative access to the system...

CVE-2025-54807 Dover Fueling Solutions ProGauge MagLink LX 4 Devices Use of Hard-coded Cryptographic Key

The secret used for validating authentication tokens is hardcoded in device firmware for affected versions. An attacker who obtains the signing key can bypass authentication, gaining complete access to the system...

CVE-2025-54807 Dover Fueling Solutions ProGauge MagLink LX 4 Devices Use of Hard-coded Cryptographic Key

The secret used for validating authentication tokens is hardcoded in device firmware for affected versions. An attacker who obtains the signing key can bypass authentication, gaining complete access to the system...

CVE-2025-55068 Dover Fueling Solutions ProGauge MagLink LX4 Devices Integer Overflow or Wraparound

Dover Fueling Solutions ProGauge MagLink LX4 Devices fail to handle Unix time values beyond a certain point. An attacker can manually change the system time to exploit this limitation, potentially causing errors in authentication and leading to a denial-of-service condition...

Dover Fueling Solutions ProGauge MagLink LX4 Devices

RISK EVALUATION Successful exploitation of these vulnerabilities could result in a remote attacker causing a denial-of-service condition or gaining administrative access to the device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...

PT-2025-38479

Name of the Vulnerable Software and Affected Versions Dover Fueling Solutions ProGauge MagLink LX4 Devices affected versions not specified Description Dover Fueling Solutions ProGauge MagLink LX4 Devices have default root credentials that cannot be changed through standard administrative means. A...

Dover Fueling Solutions ProGauge MagLink LX4 安全漏洞

The Dover Fueling Solutions ProGauge MagLink LX4 is an automated tank gauging system console from Dover Fueling Solutions, USA. A security vulnerability exists in several Dover products that stems from the use of default root credentials that cannot be changed through standard administrative...

CVE-2024-43423

The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed...

CVE-2024-45373

Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator...

CVE-2024-45373

Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator...

CVE-2024-43423

The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed...

CVE-2024-43423

The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed...

CVE-2024-45373

CVE-2024-45373 concerns Dover Fueling Solutions ProGauge MAGLINK LX4 CONSOLE (and LX CONSOLE) with an improper privilege management flaw. A authenticated user can elevate their privileges to administrator by changing their level after login, enabling full control of the device application and pot...

CVE-2024-45373 Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE Improper Privilege Management

Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator...

CVE-2024-43423 Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE Use of Hard-coded Password

The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed...

CVE-2024-43423

CVE-2024-43423 affects Dover Fueling Solutions ProGauge MAGLINK LX4 CONSOLE (and LX) web applications, describing a hard-coded administrator password that cannot be changed. Root cause: hard-coded admin credentials in the web UI, enabling full device access; CVSS scores indicate high risk (3.1/AV...

PT-2024-30576 · Unknown · Progauge Maglink Lx4 Console

Name of the Vulnerable Software and Affected Versions: ProGauge MAGLINK LX4 CONSOLE affected versions not specified Description: The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed. Recommendations: At the momen...