Lucene search
K

88 matches found

CNNVD
CNNVD
added 2025/09/18 12:0 a.m.5 views

Dover Fueling Solutions ProGauge MagLink LX4 安全漏洞

The Dover Fueling Solutions ProGauge MagLink LX4 is an automated tank gauging system console from Dover Fueling Solutions, USA. A security vulnerability exists in several Dover products that stems from the use of default root credentials that cannot be changed through standard administrative...

9.8CVSS6.8AI score0.00406EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.5 views

PT-2025-38481

Name of the Vulnerable Software and Affected Versions Dover Fueling Solutions ProGauge MagLink LX4 Devices affected versions not specified Description ProGauge MagLink LX4 devices are susceptible to a time-based issue where they fail to correctly handle Unix time values exceeding a specific point...

8.8CVSS6.5AI score0.00368EPSS
Exploits0References6
NVD
NVD
added 2025/06/27 6:15 p.m.31 views

CVE-2025-5310

Dover Fueling Solutions ProGauge MagLink LX Consoles expose an undocumented and unauthenticated target communication framework TCF interface on a specific port. Files can be created, deleted, or modified, potentially leading to remote code execution...

9.8CVSS0.00727EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/27 5:22 p.m.6 views

CVE-2025-5310 Dover Fueling Solutions ProGauge MagLink LX Consoles Missing Authentication for Critical Function

Dover Fueling Solutions ProGauge MagLink LX Consoles expose an undocumented and unauthenticated target communication framework TCF interface on a specific port. Files can be created, deleted, or modified, potentially leading to remote code execution...

9.8CVSS8.1AI score0.00727EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/27 5:22 p.m.28 views

CVE-2025-5310 Dover Fueling Solutions ProGauge MagLink LX Consoles Missing Authentication for Critical Function

Dover Fueling Solutions ProGauge MagLink LX Consoles expose an undocumented and unauthenticated target communication framework TCF interface on a specific port. Files can be created, deleted, or modified, potentially leading to remote code execution...

9.8CVSS0.00727EPSS
Exploits0References2
CVE
CVE
added 2025/06/27 5:22 p.m.43 views

CVE-2025-5310

Dover Fueling Solutions ProGauge MagLink LX Consoles expose an undocumented and unauthenticated Target Communication Framework (TCF) interface on a specific port. The interface allows files to be created, deleted, or modified and could enable remote code execution. Affected product: ProGauge MagL...

9.8CVSS7.5AI score0.00727EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/27 12:0 a.m.5 views

Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE 访问控制错误漏洞

The Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE DFS ProGauge MAGLINK LX CONSOLE is an industrial console from Dover Fueling Solutions, Inc. designed for expansion. An access control error vulnerability exists in the Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE that stems from...

9.8CVSS7.8AI score0.00727EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/18 12:0 a.m.6 views

PT-2025-26160 · Dover Fueling Solutions · Progauge Maglink Lx Console

Name of the Vulnerable Software and Affected Versions: Dover Fueling Solutions ProGauge MagLink LX Consoles affected versions not specified Description: A critical issue has been identified, allowing remote attackers to gain full control over fueling station equipment without requiring...

9.8CVSS6.5AI score0.00727EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2025/02/05 12:43 p.m.8 views

CVE-2024-43693

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a remote attacker to inject arbitrary commands...

10CVSS7AI score0.00788EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:30 p.m.10 views

CVE-2024-43423

The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed...

9.8CVSS7.1AI score0.00684EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 12:27 p.m.12 views

CVE-2024-43692

An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full privileges by requesting the URL directly...

9.8CVSS6.9AI score0.00508EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:51 a.m.6 views

CVE-2024-41725

ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input fields that are used to render pages which may allow cross site scripting...

8.8CVSS6.6AI score0.00344EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:33 a.m.7 views

CVE-2024-45373

Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator...

8.8CVSS6.9AI score0.00449EPSS
Exploits0References1
NVD
NVD
added 2024/09/25 1:15 a.m.25 views

CVE-2024-43692

An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full privileges by requesting the URL directly...

9.8CVSS0.00508EPSS
Exploits0References1
OSV
OSV
added 2024/09/25 1:15 a.m.4 views

CVE-2024-43693

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a remote attacker to inject arbitrary commands...

9.8CVSS6AI score0.00788EPSS
Exploits0References1
OSV
OSV
added 2024/09/25 1:15 a.m.4 views

CVE-2024-45066

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP sub-menu can allow a remote attacker to inject arbitrary commands...

9.8CVSS6AI score0.00788EPSS
Exploits0References1
NVD
NVD
added 2024/09/25 1:15 a.m.25 views

CVE-2024-43693

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a remote attacker to inject arbitrary commands...

10CVSS0.00788EPSS
Exploits0References1
NVD
NVD
added 2024/09/25 1:15 a.m.12 views

CVE-2024-45373

Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator...

8.8CVSS0.00449EPSS
Exploits0References1
NVD
NVD
added 2024/09/25 1:15 a.m.23 views

CVE-2024-45066

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP sub-menu can allow a remote attacker to inject arbitrary commands...

10CVSS0.00788EPSS
Exploits0References1
NVD
NVD
added 2024/09/25 1:15 a.m.38 views

CVE-2024-43423

The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed...

9.8CVSS0.00684EPSS
Exploits0References1
Rows per page
Query Builder