11 matches found
EUVD-2020-3206
Malware in sbrugna...
Gira TKS-IP-Gateway Path Traversal Vulnerability
Gira TKS-IP-Gateway is a network communication gateway product from Gira Germany. A path traversal vulnerability exists in Gira TKS-IP-Gateway version 4.0.7.7. An attacker could exploit the vulnerability to download an application database...
Gira TKS-IP-Gateway Operating System Command Injection Vulnerability
Gira TKS-IP-Gateway is a network communication gateway product from Gira Germany. A security vulnerability exists in Gira TKS-IP-Gateway version 4.0.7.7. The vulnerability can be exploited by an attacker to execute code via the backup function of the web front-end...
CVE-2020-10794
Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to unauthenticated path traversal that allows an attacker to download the application database. This can be combined with CVE-2020-10795 for remote root access...
CVE-2020-10795
Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to authenticated remote code execution via the backup functionality of the web frontend. This can be combined with CVE-2020-10794 for remote root access...
Remote code execution
Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to authenticated remote code execution via the backup functionality of the web frontend. This can be combined with CVE-2020-10794 for remote root access...
Path traversal
Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to unauthenticated path traversal that allows an attacker to download the application database. This can be combined with CVE-2020-10795 for remote root access...
CVE-2020-10795
Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to authenticated remote code execution via the backup functionality of the web frontend. This can be combined with CVE-2020-10794 for remote root access...
CVE-2020-10795
Product affected: Gira TKS-IP-Gateway 4.0.7.7. Vulnerabilities: (1) Path traversal (CNVD-2020-41719/CVE-2020-10794) could allow an attacker to download the application database; (2) Authenticated remote code execution via the backup function of the web frontend (CVE-2020-10795) with potential rem...
CVE-2020-10794
Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to unauthenticated path traversal that allows an attacker to download the application database. This can be combined with CVE-2020-10795 for remote root access...
CVE-2020-10794
Gira TKS-IP-Gateway 4.0.7.7 is affected by an unauthenticated path traversal vulnerability that lets an attacker download the application database. This CVE (CVE-2020-10794) is linked to CVE-2020-10795, which describes authenticated remote code execution via the backup web frontend and could enab...