Lucene search
K

7 matches found

OSV
OSV
added 2023/08/24 5:15 p.m.4 views

CVE-2023-40710

An adversary could cause a continuous restart loop to the entire device by sending a large quantity of HTTP GET requests if the controller has the built-in web server enabled but does not have the built-in web server completely set up and configured for the SNAP PAC S1 Firmware version R10.3b...

7.5CVSS5.8AI score0.00442EPSS
Exploits0References1
OSV
OSV
added 2023/08/24 5:15 p.m.4 views

CVE-2023-40706

There is no limit on the number of login attempts in the web server for the SNAP PAC S1 Firmware version R10.3b. This could allow for a brute-force attack on the built-in web server login...

9.8CVSS5.8AI score0.00537EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/24 4:9 p.m.40 views

CVE-2023-40710

An adversary could cause a continuous restart loop to the entire device by sending a large quantity of HTTP GET requests if the controller has the built-in web server enabled but does not have the built-in web server completely set up and configured for the SNAP PAC S1 Firmware version R10.3b...

6.8CVSS7.7AI score0.00442EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/08/24 4:8 p.m.12 views

CVE-2023-40709 Uncontrolled Resource Consumption in OPTO 22 SNAP PAC S1 Built-In Web Server

An adversary could crash the entire device by sending a large quantity of ICMP requests if the controller has the built-in web server enabled but does not have the built-in web server completely set up and configured for the SNAP PAC S1 Firmware version R10.3b...

6.8CVSS6.9AI score0.00442EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/24 4:5 p.m.28 views

CVE-2023-40707 Weak password requirements in OPTO 22 SNAP PAC S1 Built-in Web Server

There are no requirements for setting a complex password in the built-in web server of the SNAP PAC S1 Firmware version R10.3b, which could allow for a successful brute force attack if users don't set up complex credentials...

8.6CVSS8.8AI score0.00468EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/24 12:0 a.m.5 views

OPTO 22 SNAP PAC S1 安全漏洞

The OPTO 22 SNAP PAC S1 is a controller from OPTO 22 USA. A security vulnerability exists in OPTO 22 SNAP PAC S1 Firmware version R10.3b, which stems from an unlimited number of login attempts in the web server, allowing an attacker to brute-force the built-in web server login...

9.8CVSS8.4AI score0.00537EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/08/24 12:0 a.m.5 views

OPTO 22 SNAP PAC S1 安全漏洞

The OPTO 22 SNAP PAC S1 is a controller from OPTO 22 USA. A security vulnerability exists in the OPTO 22 SNAP PAC S1 R10.3b firmware version that stems from an improperly restricted built-in web server authentication attempt that does not mandate a complex password, which could lead to brute forc...

8.6CVSS7.3AI score0.00468EPSS
Exploits0References3
Rows per page
Query Builder