CVE-2023-47578

Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices are susceptible to Cross Site Request Forgery CSRF attacks due to the absence of CSRF protection in the web interface...

CVE-2023-47575

An issue was discovered on Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices. The web interfaces of the Relyum devices are susceptible to reflected XSS...

CVE-2023-47573

An issue discovered in Relyum RELY-PCIe 22.2.1 devices. The authorization mechanism is not enforced in the web interface, allowing a low-privileged user to execute administrative functions...

CVE-2023-47576

An issue was discovered in Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices, allowing authenticated command injection through the web interface...

Relyum RELY-PCIe, RELY-REC Security Vulnerabilities

The Relyum RELY-PCIe is an intelligent pluggable board from the Spanish company Relyum. A security vulnerability exists in Relyum RELY-PCIe version 22.2.1, RELY-REC version 23.1.0, which originates from a command injection attack that is allowed to be executed via a web interface...

PT-2023-30513 · Relyum · Rely-Rec +1

Name of the Vulnerable Software and Affected Versions: Relyum RELY-PCIe version 22.2.1 Relyum RELY-REC version 23.1.0 Description: The issue is related to Cross Site Request Forgery CSRF attacks, which can be launched against the devices due to the absence of CSRF protection in the web interface...

PT-2023-30509 · Relyum · Rely-Rec +1

Name of the Vulnerable Software and Affected Versions: Relyum RELY-PCIe version 22.2.1 Relyum RELY-REC version 23.1.0 Description: An issue was discovered on Relyum devices, where there is a Weak SMB configuration with signing disabled. Recommendations: For Relyum RELY-PCIe version 22.2.1, consid...