Skip to main content

Dcu 210E Firmware

4 CVEs product

Monthly

CVE-2018-5402 HIGH This Week

The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App use an embedded webserver that uses unencrypted plaintext for the transmission of the administrator PIN Impact: An attacker once. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Google File Upload Rp 210E Firmware Dcu 210E Firmware Marine Pro Observer
NVD
CVSS 3.0
8.8
EPSS
0.9%
CVE-2018-5401 MEDIUM This Month

The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App transmit sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Google Information Disclosure Rp 210E Firmware Dcu 210E Firmware Marine Pro Observer
NVD
CVSS 3.0
5.9
EPSS
0.9%
CVE-2018-5400 CRITICAL Act Now

The Auto-Maskin products utilize an undocumented custom protocol to set up Modbus communications with other devices without validating those devices. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Rp 210E Firmware Dcu 210E Firmware
NVD
CVSS 3.0
9.1
EPSS
0.7%
CVE-2018-5399 CRITICAL Act Now

The Auto-Maskin DCU 210E firmware contains an undocumented Dropbear SSH server, v2015.55, configured to listen on Port 22 while the DCU is running. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Dcu 210E Firmware Rp 210E Firmware
NVD
CVSS 3.0
9.8
EPSS
2.1%
EPSS 1% CVSS 8.8
HIGH This Week

The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App use an embedded webserver that uses unencrypted plaintext for the transmission of the administrator PIN Impact: An attacker once. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Google File Upload Rp 210E Firmware +2
NVD
EPSS 1% CVSS 5.9
MEDIUM This Month

The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App transmit sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Google Information Disclosure Rp 210E Firmware +2
NVD
EPSS 1% CVSS 9.1
CRITICAL Act Now

The Auto-Maskin products utilize an undocumented custom protocol to set up Modbus communications with other devices without validating those devices. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Rp 210E Firmware +1
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

The Auto-Maskin DCU 210E firmware contains an undocumented Dropbear SSH server, v2015.55, configured to listen on Port 22 while the DCU is running. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Dcu 210E Firmware Rp 210E Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy