4 matches found
CVE-2024-27944
Siemens RUGGEDCOM CROSSBOW is affected by CVE-2024-27944 (and related CVEs in the same advisory) for all versions prior to V5.5. The issue is external control of file name or path in the Firmware Upload Handler, enabling a privileged user to upload firmware to the root installation directory and ...
Race condition
Medtronic MyCareLink Smart 25000 all versions are vulnerable to a race condition in the MCL Smart Patient Reader software update system, which allows unsigned firmware to be uploaded and executed on the Patient Reader. If exploited an attacker could remotely execute code on the MCL Smart Patient...
CVE-2018-4834
A vulnerability has been identified in Desigo PXC00-E.D V4.10 All versions V4.10.111, Desigo PXC00-E.D V5.00 All versions V5.0.171, Desigo PXC00-E.D V5.10 All versions V5.10.69, Desigo PXC00-E.D V6.00 All versions V6.0.204, Desigo PXC00/64/128-U V4.10 All versions V4.10.111 only with web module,...
CVE-2008-1262
The administration panel on the Airspan WiMax ProST 4.1 antenna with 6.5.38.0 software does not verify authentication credentials, which allows remote attackers to 1 upload malformed firmware or 2 bind the antenna to a different WiMAX base station via unspecified requests to forms under processad...