Carlosgavazzi Vmu-c Em Firmware : Security vulnerabilities, CVEs

Copy

CVE-2017-5146

Public exploit

An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. Sensitive information is stored in clear-text.

Max CVSS

7.5

EPSS Score

0.69%

Published

2017-02-13

Updated

2017-02-24

CVE-2017-5145

An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. Successful exploitation of this CROSS-SITE REQUEST FORGERY (CSRF) vulnerability can allow execution of unauthorized actions on the device such as configuration parameter changes, and saving modified configuration.

Max CVSS

10.0

EPSS Score

0.16%

Published

2017-02-13

Updated

2017-02-24

CVE-2017-5144

An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. The access control flaw allows access to most application functions without authentication.

Max CVSS

9.8

EPSS Score

0.21%

Published

2017-02-13

Updated

2019-10-03

3 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!