Controller Cecc-x-m1 Firmware@4.0.14 Security Vulnerabilities and Issues — Controller Cecc-x-m1 Firmware@4.0.14 CVE List

Lucene search

FestoController Cecc-x-m1 Firmware4.0.14

4 matches found

CVE•added 2022/06/13 2:15 p.m.•73 views

CVE-2022-30309

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-off" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.

10CVSS9.8AI score0.00649EPSS

CVE•added 2022/06/13 2:15 p.m.•71 views

CVE-2022-30308

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-on" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.

10CVSS9.8AI score0.00514EPSS

CVE•added 2022/06/13 2:15 p.m.•65 views

CVE-2022-30310

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-acknerr-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.

10CVSS9.8AI score0.01091EPSS

CVE•added 2022/06/13 2:15 p.m.•58 views

CVE-2022-30311

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection.

10CVSS9.8AI score0.00653EPSS