CVE-2024-43693

The CVE-2024-43693 vulnerability affects Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE (and related LX4 variants) where a specially crafted POST request to the CONSOLE UTILITY sub-menu enables remote command injection. This is a network‑reachable flaw with low attack complexity and no user ...

CVE-2024-43692

The CVE-2024-43692 issue affects Dover Fueling Solutions ProGauge MAGLINK LX CONSOLE (and LX4) where an attacker can directly request a resource sub page to obtain full privileges, effectively bypassing authentication. Affected: MAGLINK LX CONSOLE (versions up to 3.4.2.2.6) and MAGLINK LX4 CONSOL...

CVE-2023-36497

CVE-2023-36497 affects Dover Fueling Solutions MAGLINK LX Web Console Configuration, versions 2.5.1 through 3.3. The vulnerability is an authentication bypass by primary weakness that could allow a guest user to elevate to admin privileges. Reported base score 8.8 (HIGH) with NETWORK attack vecto...

CVE-2023-36497 Dover Fueling Solutions MAGLINK LX Web Console Authentication Bypass by Primary Weakness

Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 could allow a guest user to elevate to admin privileges...

CVE-2023-38256

CVE-2023-38256 affects Dover MAGLINK LX Web Console Configuration versions 2.5.1–3.3. It is a path traversal vulnerability caused by improper restriction of directory path names, potentially allowing an attacker to access files stored on the system. Public sources describe remote exploitation wit...

CVE-2023-38256 Dover Fueling Solutions MAGLINK LX Console Path Traversal

Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 vulnerable to a path traversal attack, which could allow an attacker to access files stored on the system...

CVE-2023-41256

Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 are vulnerable to authentication bypass that could allow an unauthorized attacker to obtain user access...

Authentication flaw

Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 are vulnerable to authentication bypass that could allow an unauthorized attacker to obtain user access...

CVE-2023-41256

The CVE-2023-41256 entry concerns the MAGLINK LX Web Console Configuration (versions 2.5.1–3.3) from Dover Fueling Solutions, vulnerable to an authentication bypass that could let an unauthenticated attacker gain user access. Public sources (CISA ICS advisory) describe this as a remote, low-compl...

CVE-2023-41256 Dover Fueling Solutions MAGLINK LX Console Authentication Bypass

Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1, 2.11, 3.0, 3.2, and 3.3 are vulnerable to authentication bypass that could allow an unauthorized attacker to obtain user access...

PT-2023-5124 · Dover Fueling Solutions · Maglink Lx Web Console Configuration

Name of the Vulnerable Software and Affected Versions: Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1 through 3.3 Description: The issue is related to incorrect restriction of directory path names with limited access. This could allow a remote attacker to access files...

PT-2023-5113 · Dover Fueling Solutions · Maglink Lx Web Console

Name of the Vulnerable Software and Affected Versions: Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1 through 3.3 Description: The vulnerability in the MAGLINK LX Web Console is related to authentication bypass, which could allow an unauthorized attacker to obtain use...

PT-2023-5123 · Dover Fueling Solutions · Maglink Lx Web Console Configuration

Name of the Vulnerable Software and Affected Versions: Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1 through 3.3 Description: The issue is related to insufficient access control in the web console, which could allow a remote attacker to elevate their privileges. A...