Skip to main content

Ecostruxure It Gateway

3 CVEs product

Monthly

CVE-2024-10575 CRITICAL PATCH Act Now

the network and potentially impacting connected devices. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authorization vulnerability could allow attackers to access resources or perform actions without proper authorization checks.

Authentication Bypass Ecostruxure It Gateway
NVD
CVSS 4.0
10.0
EPSS
0.6%
CVE-2024-0865 HIGH This Week

escalation when logged in as a non-administrative user. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Ecostruxure It Gateway
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2020-10626 HIGH This Week

In Fazecast jSerialComm, Version 2.2.2 and prior, an uncontrolled search path element vulnerability could allow a malicious DLL file with the same name of any resident DLLs inside the software. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Jserialcomm Ecostruxure It Gateway
NVD
CVSS 3.1
7.8
EPSS
0.5%
EPSS 1% CVSS 10.0
CRITICAL PATCH Act Now

the network and potentially impacting connected devices. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authorization vulnerability could allow attackers to access resources or perform actions without proper authorization checks.

Authentication Bypass Ecostruxure It Gateway
NVD
EPSS 0% CVSS 7.8
HIGH This Week

escalation when logged in as a non-administrative user. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Ecostruxure It Gateway
NVD
EPSS 0% CVSS 7.8
HIGH This Week

In Fazecast jSerialComm, Version 2.2.2 and prior, an uncontrolled search path element vulnerability could allow a malicious DLL file with the same name of any resident DLLs inside the software. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Jserialcomm Ecostruxure It Gateway
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy