12 matches found
CVE-2025-63212
GatesAir Flexiva-LX devices on firmware 1.0.13 and 2.0, including models LX100, LX300, LX600, and LX1000, expose sensitive session identifiers sid in the publicly accessible log file located at /log/Flexiva%20LX.log. An unauthenticated attacker can retrieve valid session IDs and hijack sessions...
CVE-2025-63212
GatesAir Flexiva-LX devices on firmware 1.0.13 and 2.0, including models LX100, LX300, LX600, and LX1000, expose sensitive session identifiers sid in the publicly accessible log file located at /log/Flexiva%20LX.log. An unauthenticated attacker can retrieve valid session IDs and hijack sessions...
PT-2025-47524
Name of the Vulnerable Software and Affected Versions GatesAir Flexiva-LX versions 1.0.13 and 2.0 GatesAir Flexiva-LX models LX100, LX300, LX600, and LX1000 Description The GatesAir Flexiva-LX devices are affected by an issue where sensitive session identifiers sid are exposed in a publicly...
EUVD-2023-40064
Malicious code in bioql PyPI...
EUVD-2023-40063
Malicious code in bioql PyPI...
CVE-2023-36082
An isssue in GatesAIr Flexiva FM Transmitter/Exiter Fax 150W allows a remote attacker to gain privileges via the LDAP and SMTP credentials...
Design/Logic Flaw
An isssue in GatesAIr Flexiva FM Transmitter/Exiter Fax 150W allows a remote attacker to gain privileges via the LDAP and SMTP credentials...
CVE-2023-36082
Technical details on CVE-2023-36082 are not publicly available in the provided connected documents. Monitor for updates from vendors and vulnerability databases; current sources reiterate a privilege-escalation via LDAP/SMTP credentials in GatesAir Flexiva.
CVE-2023-36082
An isssue in GatesAIr Flexiva FM Transmitter/Exiter Fax 150W allows a remote attacker to gain privileges via the LDAP and SMTP credentials...
CVE-2023-36082
An isssue in GatesAIr Flexiva FM Transmitter/Exiter Fax 150W allows a remote attacker to gain privileges via the LDAP and SMTP credentials...
Cross site scripting
Cross Site Scripting vulnerability in GatesAIr Flexiva FM Transmitter/Exciter v.FAX 150W allows a remote attacker to execute arbitrary code via a crafted script to the web application dashboard...
GatesAIr Flexiva FM Transmitter Cross-Site Scripting Vulnerability
The GatesAIr Flexiva FM Transmitter is an FM platform from GatesAIr, Inc. A security vulnerability exists in GatesAIr Flexiva FM Transmitter/Exciter v.FAX 150W. An attacker can exploit the vulnerability to execute arbitrary code on a web application dashboard via a specially crafted script...