Lucene search
K

4 matches found

NVD
NVD
added 2022/04/20 4:15 p.m.17 views

CVE-2022-26516

Authorized users may install a maliciously modified package file when updating the device via the web user interface. The user may inadvertently use a package file obtained from an unauthorized source or a file that was compromised between download and deployment...

8.4CVSS0.00319EPSS
Exploits0References1
CVE
CVE
added 2022/04/20 3:30 p.m.77 views

CVE-2022-26516

CVE-2022-26516 affects Red Lion DA50N gateways. The weakness is Insufficient Verification of Data Authenticity (web UI update process), allowing an authorized user to install a maliciously modified package file if it’s sourced from unauthorized or compromised files between download and deployment...

8.4CVSS7.8AI score0.00319EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/04/20 3:30 p.m.7 views

CVE-2022-26516 ICSA-22-104-03 Red Lion DA50N

Authorized users may install a maliciously modified package file when updating the device via the web user interface. The user may inadvertently use a package file obtained from an unauthorized source or a file that was compromised between download and deployment...

8.4CVSS8.4AI score0.00319EPSS
Exploits0References1
ICS
ICS
added 2022/04/14 12:0 a.m.99 views

Red Lion DA50N

1. EXECUTIVE SUMMARY CVSS v3 9.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Red Lion Equipment: DA50N Vulnerabilities: Insufficient Verification of Data Authenticity, Weak Password Requirements, Use of Unmaintained Third-Party Components, Insufficiently Protected Credentials 2...

10CVSS7.5AI score0.01172EPSS
Exploits0References5
Rows per page
Query Builder