Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-6495

Malware in sbrugna...

4.3CVSS6.4AI score0.01867EPSS
Exploits2References5
NVD
NVD
added 2018/03/09 8:29 p.m.11 views

CVE-2014-6617

Softing FG-100 PB PROFIBUS firmware version FG-x00-PBV2.02.0.00 contains a hardcoded password for the root account, which allows remote attackers to obtain administrative access via a TELNET session...

10CVSS9.4AI score0.04543EPSS
Exploits2References5
Prion
Prion
added 2018/03/09 8:29 p.m.13 views

Hardcoded credentials

Softing FG-100 PB PROFIBUS firmware version FG-x00-PBV2.02.0.00 contains a hardcoded password for the root account, which allows remote attackers to obtain administrative access via a TELNET session...

10CVSS7.4AI score0.04543EPSS
Exploits2References5Affected Software1
CVE
CVE
added 2018/03/09 8:0 p.m.38 views

CVE-2014-6617

The CVE-2014-6617 entry applies to Softing FG-100 PB PROFIBUS firmware FG-x00-PB_V2.02.0.00, where a hardcoded root password enables TELNET access to obtain admin rights. Public documents (NVD entry and Compass Security advisory) confirm a backdoor account exists by default, with vendor notes ind...

10CVSS9.3AI score0.04543EPSS
Exploits2References5Affected Software1
Cvelist
Cvelist
added 2018/03/09 8:0 p.m.18 views

CVE-2014-6617

Softing FG-100 PB PROFIBUS firmware version FG-x00-PBV2.02.0.00 contains a hardcoded password for the root account, which allows remote attackers to obtain administrative access via a TELNET session...

9.5AI score0.04543EPSS
Exploits2References5
NVD
NVD
added 2015/08/31 6:59 p.m.11 views

CVE-2014-6616

Cross-site scripting XSS vulnerability in Softing FG-100 PROFIBUS Single Channel FG-100-PB with firmware FG-x00-PBV2.02.0.00 allows remote attackers to inject arbitrary web script or HTML via the DEVICENAME parameter to cgi-bin/CFGhttp/...

4.3CVSS5.7AI score0.01867EPSS
Exploits2References3
Prion
Prion
added 2015/08/31 6:59 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in Softing FG-100 PROFIBUS Single Channel FG-100-PB with firmware FG-x00-PBV2.02.0.00 allows remote attackers to inject arbitrary web script or HTML via the DEVICENAME parameter to cgi-bin/CFGhttp/...

4.3CVSS6.2AI score0.01867EPSS
Exploits2References3Affected Software1
CVE
CVE
added 2015/08/31 6:0 p.m.53 views

CVE-2014-6616

CVE-2014-6616 is an XSS flaw in Softing FG-100 PROFIBUS Single Channel (FG-100-PB) firmware FG-x00-PB_V2.02.0.00. The web GUI fails to properly encode user data, allowing an attacker to inject arbitrary script via the DEVICE_NAME parameter to /cgi-bin/CFGhttp. Impact: remote script execution with...

4.3CVSS5.9AI score0.01867EPSS
Exploits2References3Affected Software1
securityvulns
securityvulns
added 2014/11/10 12:0 a.m.106 views

CVE-2014-6616 Softing FG-100 Webui XSS

COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html Product: Softing FG-100 PB Vendor: Softing AG www.softing.com CVD ID: CVE-2014-6616 Subject: XSS Risk: High Effect: Remotely exploitable Author: Johannes Klick Daniel Marzin Ingmar Rosenhagen Date: 05.11.2014 Introduction:...

4.3CVSS6.4AI score0.01867EPSS
Exploits2
securityvulns
securityvulns
added 2014/11/10 12:0 a.m.96 views

CVE-2014-6617 Softing FG-100 Backdoor Account

COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html Product: Softing FG-100 PB Vendor: Softing AG www.softing.com CVD ID: CVE-2014-6617 Subject: Backdoor Account Risk: High Effect: Remotely exploitable Author: Ingmar Rosenhagen Daniel Marzin Johannes Klick Date: 05.11.2014...

10CVSS9.4AI score0.04543EPSS
Exploits2
securityvulns
securityvulns
added 2014/11/10 12:0 a.m.84 views

Softing FG-100 security vulnerabilities

Backdoor accounts, crossite scripting...

10CVSS2.5AI score0.04543EPSS
Exploits4References2
Packet Storm
Packet Storm
added 2014/11/05 12:0 a.m.39 views

Softing FG-100 PB Hardcoded Backdoor

COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html Product: Softing FG-100 PB Vendor: Softing AG www.softing.com CVD ID: CVE-2014-6617 Subject: Backdoor Account Risk: High Effect: Remotely exploitable Author: Ingmar Rosenhagen Daniel Marzin Johannes Klick Date: 05.11.2014...

8.1CVSS0.1AI score0.04543EPSS
Exploits2
Packet Storm
Packet Storm
added 2014/11/05 12:0 a.m.123 views

Softing FG-100 PB Cross Site Scripting

COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html Product: Softing FG-100 PB Vendor: Softing AG www.softing.com CVD ID: CVE-2014-6616 Subject: XSS Risk: High Effect: Remotely exploitable Author: Johannes Klick Daniel Marzin Ingmar Rosenhagen Date: 05.11.2014 Introduction:...

4.3CVSS6.7AI score0.01867EPSS
Exploits2
Rows per page
Query Builder