Festo

Controller Cecc-x-m1-ys-l1 Firmware

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-3270

  • EPSS 0.44%
  • Veröffentlicht 01.12.2022 11:15:10
  • Zuletzt bearbeitet 21.11.2024 07:19:11

In multiple products by Festo a remote unauthenticated attacker could use functions of an undocumented protocol which could lead to a complete loss of confidentiality, integrity and availability.

10

CVE-2022-30308

  • EPSS 0.51%
  • Veröffentlicht 13.06.2022 14:15:09
  • Zuletzt bearbeitet 21.11.2024 07:02:32

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-on" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to i...

10

CVE-2022-30309

  • EPSS 0.65%
  • Veröffentlicht 13.06.2022 14:15:09
  • Zuletzt bearbeitet 21.11.2024 07:02:32

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-off" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to ...

10

CVE-2022-30310

  • EPSS 1.09%
  • Veröffentlicht 13.06.2022 14:15:09
  • Zuletzt bearbeitet 21.11.2024 07:02:33

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-acknerr-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to imprope...

10

CVE-2022-30311

  • EPSS 0.65%
  • Veröffentlicht 13.06.2022 14:15:09
  • Zuletzt bearbeitet 21.11.2024 07:02:33

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to imprope...