Emerson

Dixell Xweb-500 Firmware

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2021-45420

Exploit
  • EPSS 78.7%
  • Published 14.02.2022 14:15:08
  • Last modified 21.11.2024 06:32:11

Emerson Dixell XWEB-500 products are affected by arbitrary file write vulnerability in /cgi-bin/logo_extra_upload.cgi, /cgi-bin/cal_save.cgi, and /cgi-bin/lo_utils.cgi. An attacker will be able to write any file on the target system without any kind ...

7.5

CVE-2021-45421

Exploit
  • EPSS 0.39%
  • Published 14.02.2022 14:15:08
  • Last modified 21.11.2024 06:32:11

Emerson Dixell XWEB-500 products are affected by information disclosure via directory listing. A potential attacker can use this misconfiguration to access all the files in the remote directories. Note: the product has not been supported since 2018 a...