Hms-networks

Ewon Flexy

4 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-25817

  • EPSS 0.29%
  • Veröffentlicht 12.03.2026 00:00:00
  • Zuletzt bearbeitet 16.03.2026 14:54:11

HMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and Cosy+ with firmware 23.xx before 23.0s3 have improper neutralization of special elements used in an OS command allowing remote code execution by attacke...

9.1

CVE-2026-25818

  • EPSS 0.02%
  • Veröffentlicht 12.03.2026 00:00:00
  • Zuletzt bearbeitet 16.03.2026 14:54:11

HMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and Cosy+ with firmware 23.xx before 23.0s3 have weak entropy for authentication cookies, allowing an attacker with a stolen session cookie to find the user...

7.5

CVE-2026-25819

  • EPSS 0.28%
  • Veröffentlicht 12.03.2026 00:00:00
  • Zuletzt bearbeitet 16.03.2026 14:54:11

HMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and Cosy+ with firmware 23.xx before 23.0s3 allows unauthenticated attackers to cause a Denial of Service by using a specially crafted HTTP request that lea...

9.8

CVE-2026-25823

  • EPSS 0.26%
  • Veröffentlicht 12.03.2026 00:00:00
  • Zuletzt bearbeitet 16.03.2026 14:54:11

HMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and Cosy+ with firmware 23.xx before 23.0s3 have a stack buffer overflow that leads to a Denial of Service, which can also be exploited to achieve Unauthent...