Preços Enterprise

CVE-2019-6814

9.8CRITICAL

A CWE-287: Improper Authentication vulnerability exists in the NET55XX Encoder with firmware prior to version 2.1.9.7 which could cause impact to confidentiality, integrity, and availability when a re

Publicado: 5/22/2019Atualizado: 11/21/2024

Ver no NVD Ver no MITRE

Descrição

A CWE-287: Improper Authentication vulnerability exists in the NET55XX Encoder with firmware prior to version 2.1.9.7 which could cause impact to confidentiality, integrity, and availability when a remote attacker crafts a malicious request to the encoder webUI.

Análise IADesenvolvido por IA

Produtos Afetados

schneider-electricnet5501_firmware

schneider-electricnet5501

-

schneider-electricnet5501-i_firmware

schneider-electricnet5501-i

-

schneider-electricnet5501-xt_firmware

schneider-electricnet5501-xt

-

schneider-electricnet5504_firmware

schneider-electricnet5504

-

schneider-electricnet5500_firmware

schneider-electricnet5500

-

schneider-electricnet5516_firmware

schneider-electricnet5516

-

schneider-electricnet5508_firmware

schneider-electricnet5508

-

Exploits Disponíveis (1)

remoteunixVERIFIED

Schneider Electric Pelco Endura NET55XX Encoder - Authentication Bypass (Metasploit)

Metasploit7/29/2019

Referências

https://www.se.com/ww/en/download/document/SEVD-2019-134-01/
Vendor Advisory
https://www.se.com/ww/en/download/document/SEVD-2019-134-01/
Vendor Advisory