|
265851
|
5.8 |
MEDIUM
Network
|
moxa
|
uc-7408_lx-plus
uc-7408_lx-plus_firmware
|
Moxa UC-7408 LX-Plus devices allow remote authenticated users to write to the firmware, and consequently render a device unusable, by leveraging root access.
|
CWE-254
7PK - Security Features
|
CVE-2016-4500
|
2024-11-21 11:52 |
2016-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265852
|
9.8 |
CRITICAL
Network
|
sixnet
|
bt-5_series_cellular_router_firmware
bt-6_series_cellular_router_firmware
|
Sixnet BT-5xxx and BT-6xxx M2M devices before 3.8.21 and 3.9.x before 3.9.8 have hardcoded credentials, which allows remote attackers to obtain access via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2016-4521
|
2024-11-21 11:52 |
2016-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265853
|
8.0 |
HIGH
Network
|
resourcedm
|
intuitive_650_tdb_controller
|
Cross-site request forgery (CSRF) vulnerability on Resource Data Management (RDM) Intuitive 650 TDB Controller devices before 2.1.24 allows remote authenticated users to hijack the authentication of …
|
CWE-352
Origin Validation Error
|
CVE-2016-4506
|
2024-11-21 11:52 |
2016-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265854
|
8.8 |
HIGH
Network
|
resourcedm
|
intuitive_650_tdb_controller
|
Resource Data Management (RDM) Intuitive 650 TDB Controller devices before 2.1.24 allow remote authenticated users to modify arbitrary passwords via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-4505
|
2024-11-21 11:52 |
2016-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265855
|
7.5 |
HIGH
Network
|
envirosys
|
esc_8832_data_controller
|
Environmental Systems Corporation (ESC) 8832 Data Controller 3.02 and earlier allows remote attackers to bypass intended access restrictions and execute arbitrary functions via a modified parameter.
|
CWE-284
Improper Access Control
|
CVE-2016-4502
|
2024-11-21 11:52 |
2016-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265856
|
5.3 |
MEDIUM
Network
|
siemens
|
siprotec_firmware
|
A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.0…
|
CWE-200
Information Exposure
|
CVE-2016-4785
|
2024-11-21 11:52 |
2016-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265857
|
5.3 |
MEDIUM
Network
|
siemens
|
siprotec_firmware
|
A vulnerability has been identified in firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.0…
|
CWE-200
Information Exposure
|
CVE-2016-4784
|
2024-11-21 11:52 |
2016-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265858
|
9.1 |
CRITICAL
Network
|
envirosys
|
esc_8832_data_controller
|
Environmental Systems Corporation (ESC) 8832 Data Controller 3.02 and earlier mishandles sessions, which allows remote attackers to bypass authentication and make arbitrary configuration changes via …
|
CWE-284
Improper Access Control
|
CVE-2016-4501
|
2024-11-21 11:52 |
2016-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265859
|
5.3 |
MEDIUM
Network
|
ivanti
|
connect_secure
|
Pulse Connect Secure (PCS) 8.2 before 8.2r1 allows remote attackers to disclose sign in pages via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2016-4792
|
2024-11-21 11:52 |
2016-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265860
|
8.6 |
HIGH
Network
|
pulsesecure
ivanti
|
pulse_connect_secure
connect_secure
|
The administrative user interface in Pulse Connect Secure (PCS) 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r9, and 7.4 before 7.4r13.4 allows remote administrators to enumerate files, read arb…
|
NVD-CWE-noinfo
|
CVE-2016-4791
|
2024-11-21 11:52 |
2016-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
