12 matches found
EUVD-2018-6706
Malware in sbrugna...
The vulnerability of the web interface of the EMG12 Ethernet Modbus Gateway allows a intruder to execute arbitrary code.
The vulnerability of the web interface of the EMG12 Ethernet Modbus Gateway arises from errors in the authentication mechanism. Operating the system allows a malicious actor to bypass the authentication mechanism and execute arbitrary code using a specially crafted URI...
The vulnerability of the web interface of the EMG12 Ethernet Modbus Gateway allows a intruder to execute arbitrary code.
The vulnerability of the web interface of the EMG12 Ethernet Modbus Gateway arises from errors in processing GET requests. Operating this device allows a malicious actor to execute arbitrary code using a specially crafted GET request...
Authentication flaw
Entes EMG12 versions 2.57 and prior The application uses a web interface where it is possible for an attacker to bypass authentication with a specially crafted URL. This could allow for remote code execution...
CVE-2018-14822
Entes EMG12 versions 2.57 and prior an information exposure through query strings vulnerability in the web interface has been identified, which may allow an attacker to impersonate a legitimate user and execute arbitrary code...
CVE-2018-14826
Entes EMG12 versions 2.57 and prior The application uses a web interface where it is possible for an attacker to bypass authentication with a specially crafted URL. This could allow for remote code execution...
CVE-2018-14822
Entes EMG12 versions 2.57 and prior an information exposure through query strings vulnerability in the web interface has been identified, which may allow an attacker to impersonate a legitimate user and execute arbitrary code...
CVE-2018-14826
Entes EMG12 versions 2.57 and prior The application uses a web interface where it is possible for an attacker to bypass authentication with a specially crafted URL. This could allow for remote code execution...
CVE-2018-14826
Entes EMG12 versions 2.57 and prior The application uses a web interface where it is possible for an attacker to bypass authentication with a specially crafted URL. This could allow for remote code execution...
CVE-2018-14822
Entes EMG12 versions 2.57 and prior an information exposure through query strings vulnerability in the web interface has been identified, which may allow an attacker to impersonate a legitimate user and execute arbitrary code...
CVE-2018-14822
CVE-2018-14822 affects Entes EMG12 Ethernet Modbus Gateway firmware v2.57 and earlier. The vulnerability is an information exposure through query strings in the web interface, which may allow an attacker to impersonate a legitimate user and, per the connected sources, execute arbitrary code. The ...
CVE-2018-14826
The affected product is EMG12 Ethernet Modbus Gateway from Entes, with Firmware Version 2.57 and prior. CVE-2018-14826 corresponds to an improper authentication vulnerability that allows an attacker to bypass authentication via a specially crafted URL, enabling remote code execution. The ICS advi...