Lucene search
K

38 matches found

Nuclei
Nuclei
added 11 hours ago118 views

Viessmann Vitogate 300 - Remote Code Execution

In Vitogate 300 2.1.3.0, /cgi-bin/vitogate.cgi allows an unauthenticated attacker to bypass authentication and execute arbitrary commands via shell metacharacters in the ipaddr params JSON data for the put method. id: CVE-2023-45852 info: name: Viessmann Vitogate 300 - Remote Code Execution autho...

9.8CVSS7.1AI score0.14003EPSS
Exploits1References5
Zero Day Initiative
Zero Day Initiative
added 2025/10/01 12:0 a.m.6 views

Viessmann Vitogate 300 BN/MB vitogate.cgi form-0-2 Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Viessmann Vitogate 300 BN/MB devices. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of JSON payload data provided to the vitogate.cg...

6.8CVSS7.3AI score0.00693EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/25 2:53 a.m.5 views

CVE-2025-9494

An OS command injection vulnerability has been discovered in the Vitogate 300, which can be exploited by malicious users to compromise affected installations. Specifically, the /cgi-bin/vitogate.cgi endpoint is affected, when the form JSON parameter is set to form-0-2. The vulnerability stems fro...

8.5CVSS8.3AI score0.00693EPSS
Exploits0References1
ICS
ICS
added 2025/09/23 6:0 a.m.5 views

Viessmann Vitogate 300

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to modify an intended OS command when it is sent to a downstream component, or allow an attacker to cause unexpected interactions between the client and server. 2. RECOMMENDED PRACTICES CISA recommends users...

7AI score
Exploits0References13
NVD
NVD
added 2025/09/23 2:15 a.m.4 views

CVE-2025-9494

An OS command injection vulnerability has been discovered in the Vitogate 300, which can be exploited by malicious users to compromise affected installations. Specifically, the /cgi-bin/vitogate.cgi endpoint is affected, when the form JSON parameter is set to form-0-2. The vulnerability stems fro...

8.5CVSS0.00693EPSS
Exploits0References1
NVD
NVD
added 2025/09/23 2:15 a.m.6 views

CVE-2025-9495

The Vitogate 300 web interface fails to enforce proper server-side authentication and relies on frontend-based authentication controls. This allows an attacker to simply modify HTML elements in the browser’s developer tools to bypass login restrictions. By removing specific UI elements, an attack...

8.7CVSS0.00292EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/23 1:16 a.m.7 views

CVE-2025-9495 Viessmann Vitogate 300 Authentication Bypass

The Vitogate 300 web interface fails to enforce proper server-side authentication and relies on frontend-based authentication controls. This allows an attacker to simply modify HTML elements in the browser’s developer tools to bypass login restrictions. By removing specific UI elements, an attack...

8.7CVSS0.00292EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/23 1:12 a.m.9 views

CVE-2025-9494 Viessmann Vitogate 300 OS Command Injection

An OS command injection vulnerability has been discovered in the Vitogate 300, which can be exploited by malicious users to compromise affected installations. Specifically, the /cgi-bin/vitogate.cgi endpoint is affected, when the form JSON parameter is set to form-0-2. The vulnerability stems fro...

8.5CVSS0.00693EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/23 1:12 a.m.3 views

CVE-2025-9494 Viessmann Vitogate 300 OS Command Injection

An OS command injection vulnerability has been discovered in the Vitogate 300, which can be exploited by malicious users to compromise affected installations. Specifically, the /cgi-bin/vitogate.cgi endpoint is affected, when the form JSON parameter is set to form-0-2. The vulnerability stems fro...

8.5CVSS8AI score0.00693EPSS
Exploits0References1
CVE
CVE
added 2025/09/23 1:12 a.m.18 views

CVE-2025-9494

Vitogate 300 OS command injection (CVE-2025-9494) affects the /cgi-bin/vitogate.cgi endpoint when the JSON form parameter is set to form-0-2. The issue arises from improper sanitization before interpolating input into a format string used by popen(), enabling an authenticated attacker to inject a...

8.5CVSS8AI score0.00693EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/23 12:0 a.m.11 views

PT-2025-39104

Name of the Vulnerable Software and Affected Versions Vitogate 300 affected versions not specified Description The web interface does not properly enforce server-side authentication, relying instead on frontend-based authentication controls. This allows an attacker to bypass login restrictions by...

8.7CVSS6.5AI score0.00292EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/09/23 12:0 a.m.4 views

Viessmann Vitogate 300 安全漏洞

Viessmann Vitogate 300 is a communication gateway from Viessmann, Germany. A security vulnerability exists in the Viessmann Vitogate 300 that stems from not implementing proper server-side authentication and relying on front-end authentication controls, which could allow an attacker to bypass log...

8.7CVSS6.7AI score0.00292EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/23 12:0 a.m.6 views

PT-2025-39103

Name of the Vulnerable Software and Affected Versions Vitogate 300 affected versions not specified Description An OS command injection issue exists in the Vitogate 300. A malicious user can exploit this to compromise affected installations. The issue is present in the /cgi-bin/vitogate.cgi API...

8.5CVSS7.7AI score0.00693EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/09/23 12:0 a.m.5 views

Viessmann Vitogate 300 安全漏洞

Viessmann Vitogate 300 is a communication gateway from Viessmann, Germany. A security vulnerability exists in the Viessmann Vitogate 300 that originates from the /cgi-bin/vitogate.cgi endpoint when the form JSON parameter is set to form-0-2, which does not clean up the input correctly, and could...

8.5CVSS7.1AI score0.00693EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:31 a.m.5 views

CVE-2023-5222

A vulnerability classified as critical was found in Viessmann Vitogate 300 up to 2.1.3.0. This vulnerability affects the function isValidUser of the file /cgi-bin/vitogate.cgi of the component Web Management Interface. The manipulation leads to use of hard-coded password. The exploit has been...

9.8CVSS6.6AI score0.74697EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:41 a.m.15 views

CVE-2023-5702

A vulnerability was found in Viessmann Vitogate 300 up to 2.1.3.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /cgi-bin/. The manipulation leads to direct request. The exploit has been disclosed to the public and may be used. The identifier of th...

6.5CVSS6.6AI score0.14537EPSS
Exploits3References1
ICS
ICS
added 2024/09/10 6:0 a.m.41 views

Viessmann Climate Solutions SE Vitogate 300

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available Vendor : Viessmann Climate Solutions SE Equipment : Vitogate 300 Vulnerabilities : Use of Hard-coded Credentials, Forced Browsing, Command Injection 2. RISK EVALUATION...

9.8CVSS9.7AI score0.74697EPSS
Exploits5References10
Exploit DB
Exploit DB
added 2024/03/14 12:0 a.m.437 views

Viessmann Vitogate 300 2.1.3.0 - Remote Code Execution (RCE)

Exploit Title: Viessmann Vitogate 300 = 2.1.3.0 - Remote Code Execution RCE - Shodan Dork: http.title:'Vitogate 300' - Exploit Author: ByteHunter - Email: [email protected] - Version: versions up to 2.1.3.0 - Tested on: 2.1.1.0 - CVE : CVE-2023-5702 & CVE-2023-5222 import argparse import...

9.8CVSS6.9AI score0.74697EPSS
Exploits4
0day.today
0day.today
added 2024/03/14 12:0 a.m.368 views

Viessmann Vitogate 300 2.1.3.0 - Remote Code Execution Exploit

Exploit Title: Viessmann Vitogate 300 = 2.1.3.0 - Remote Code Execution RCE - Shodan Dork: http.title:'Vitogate 300' - Exploit Author: ByteHunter - Email: email protected - Version: versions up to 2.1.3.0 - Tested on: 2.1.1.0 - CVE : CVE-2023-5702 & CVE-2023-5222 import argparse import requests...

9.8CVSS7.9AI score0.74697EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/03/14 12:0 a.m.348 views

Viessmann Vitogate 300 2.1.3.0 Remote Code Execution

Exploit Title: Viessmann Vitogate 300 = 2.1.3.0 - Remote Code Execution RCE - Shodan Dork: http.title:'Vitogate 300' - Exploit Author: ByteHunter - Email: [email protected] - Version: versions up to 2.1.3.0 - Tested on: 2.1.1.0 - CVE : CVE-2023-5702 & CVE-2023-5222 import argparse import...

9.8CVSS9.8AI score0.74697EPSS
Exploits4
Rows per page
Query Builder