Skip to main content

Comfortlink Ii Firmware

2 CVEs product

Monthly

CVE-2015-2868 CRITICAL POC Act Now

An exploitable remote code execution vulnerability exists in the Trane ComfortLink II firmware version 2.0.2 in DSS service. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Comfortlink Ii Firmware
NVD
CVSS 3.0
9.8
EPSS
9.1%
CVE-2015-2867 CRITICAL POC Act Now

A design flaw in the Trane ComfortLink II SCC firmware version 2.0.2 service allows remote attackers to take complete control of the system. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Comfortlink Ii Firmware
NVD
CVSS 3.0
9.8
EPSS
2.9%
EPSS 9% CVSS 9.8
CRITICAL POC Act Now

An exploitable remote code execution vulnerability exists in the Trane ComfortLink II firmware version 2.0.2 in DSS service. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow Comfortlink Ii Firmware
NVD
EPSS 3% CVSS 9.8
CRITICAL POC Act Now

A design flaw in the Trane ComfortLink II SCC firmware version 2.0.2 service allows remote attackers to take complete control of the system. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Comfortlink Ii Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy