5 matches found
Code injection
Black Box AlertWerks ServSensor with firmware before SP473, AlertWerks ServSensor Junior with firmware before SP473, AlertWerks ServSensor Junior with PoE with firmware before SP473, and AlertWerks ServSensor Contact with firmware before SP473 allow remote authenticated users to discover...
CVE-2016-2311
Black Box AlertWerks ServSensor with firmware before SP473, AlertWerks ServSensor Junior with firmware before SP473, AlertWerks ServSensor Junior with PoE with firmware before SP473, and AlertWerks ServSensor Contact with firmware before SP473 allow remote authenticated users to discover...
CVE-2016-2311
The CVE-2016-2311 vulnerability affects Black Box AlertWerks ServSensor family devices (including ServSensor, ServSensor Junior, ServSensor Junior with PoE, and ServSensor Contact) with firmware before SP473. The issue allows remote authenticated users to obtain administrator and user passwords v...
Multiple Black Box AlertWerks ServSensor Products Information Disclosure Vulnerabilities
Black Box AlertWerks ServSensor and so on are the products of American Black Box Company, AlertWerks ServSensor is a core product for environmental monitoring system; AlertWerks ServSensor Junior is a remote environmental monitoring host product. A security vulnerability exists in multiple Black...
Black Box AlertWerks ServSensor Credential Management Vulnerability
OVERVIEW Independent researcher Lee Ryman has identified a credential management vulnerability in Black Box’s AlertWerks ServSensor devices. ICS-CERT and CERT Australia have coordinated with Black Box that has produced a new firmware version to mitigate this vulnerability. Lee Ryman has tested th...