Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Touch Panel 600 Advanced Firmware Security Vulnerabilities - CVSS Score 9 - 10

cve
cve

CVE-2022-45138

The configuration backend of the web-based management can be used by unauthenticated users, although only authenticated users should be able to use the API. The vulnerability allows an unauthenticated attacker to read and set several device parameters that can lead to full compromise of the device.

9.8CVSS

6.3AI Score

0.002EPSS

2023-02-27 03:15 PM
40
cve
cve

CVE-2022-45140

The configuration backend allows an unauthenticated user to write arbitrary data with root privileges to the storage, which could lead to unauthenticated remote code execution and full system compromise.

9.8CVSS

9.8AI Score

0.004EPSS

2023-02-27 03:15 PM
41
cve
cve

CVE-2023-1698

In multiple products of WAGO a vulnerability allows an unauthenticated, remote attacker to create new users and change the device configuration which can result in unintended behaviour, Denial of Service and full system compromise.

9.8CVSS

9.2AI Score

0.917EPSS

2023-05-15 09:15 AM
43