13 matches found
EUVD-2018-11301
Malware in sbrugna...
EUVD-2018-11299
Malware in sbrugna...
EUVD-2018-11300
Malware in sbrugna...
CVE-2018-19613
Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allow CSRF...
CVE-2018-19614
XSS exists in the /cmdexec/cmdexe?cmd= function in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers...
CVE-2018-19613
Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allow CSRF...
Cross site request forgery (csrf)
Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allow CSRF...
CVE-2018-19612
The /uploadfile? functionality in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allows remote users to upload malicious file types and execute ASP code...
CVE-2018-19613
Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allow CSRF...
Multiple Westermo devices hard-coded to use encryption key vulnerability
The Westermo MRD-305-DIN, MRD-315 and MRD-355 are all router products from Westermo, Sweden. A security vulnerability exists in multiple Westermo devices. An attacker could exploit the vulnerability to decode traffic from other sources...
Multiple Westermo Routers Hardcoded Password Vulnerability
The RD-305-DIN, MRD-315, MRD-355, and MRD-455 are all Westermo router devices. Multiple Westermo routers are vulnerable to a hard-coded password vulnerability where the device uses a hard-coded special key that allows an attacker to decrypt traffic from any other source...
Multiple Westermo Routers Hardcoded for Unauthorized Access Vulnerability
The RD-305-DIN, MRD-315, MRD-355, and MRD-455 are all Westermo router devices. Multiple Westermo routers have a hard-coded unauthorized access vulnerability, where the device uses hard-coded credentials that allow a local attacker to exploit the vulnerability to gain unauthorized access to the...
Multiple Westermo Router Spoofing Vulnerabilities
The RD-305-DIN, MRD-315, MRD-355, and MRD-455 are all Westermo router devices. A spoofing vulnerability exists in multiple Westermo routers, where an attacker could potentially spoof a user into making a malicious request to a server because the program does not verify that the user intended to...