Skip to main content

Esp 200 Firmware

5 CVEs product

Monthly

CVE-2018-15360 HIGH This Week

An attacker without authentication can login with default credentials for privileged users in Eltex ESP-200 firmware version 1.2.0. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Esp 200 Firmware
NVD
CVSS 3.0
7.3
EPSS
1.6%
CVE-2018-15359 HIGH This Week

An authenticated attacker with low privileges can use insecure sudo configuration to expand attack surface in Eltex ESP-200 firmware version 1.2.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Esp 200 Firmware
NVD
CVSS 3.0
8.8
EPSS
1.6%
CVE-2018-15358 HIGH This Week

An authenticated attacker with low privileges can activate high privileged user and use it to expand attack surface in Eltex ESP-200 firmware version 1.2.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Esp 200 Firmware
NVD
CVSS 3.0
8.8
EPSS
1.3%
CVE-2018-15357 MEDIUM This Month

An authenticated attacker with low privileges can extract password hash information for all users in Eltex ESP-200 firmware version 1.2.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Esp 200 Firmware
NVD
CVSS 3.0
6.5
EPSS
1.1%
CVE-2018-15356 HIGH This Week

An authenticated attacker can execute arbitrary code using command ejection in Eltex ESP-200 firmware version 1.2.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection Esp 200 Firmware
NVD
CVSS 3.0
8.8
EPSS
2.5%
EPSS 2% CVSS 7.3
HIGH This Week

An attacker without authentication can login with default credentials for privileged users in Eltex ESP-200 firmware version 1.2.0. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Esp 200 Firmware
NVD
EPSS 2% CVSS 8.8
HIGH This Week

An authenticated attacker with low privileges can use insecure sudo configuration to expand attack surface in Eltex ESP-200 firmware version 1.2.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Esp 200 Firmware
NVD
EPSS 1% CVSS 8.8
HIGH This Week

An authenticated attacker with low privileges can activate high privileged user and use it to expand attack surface in Eltex ESP-200 firmware version 1.2.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Esp 200 Firmware
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

An authenticated attacker with low privileges can extract password hash information for all users in Eltex ESP-200 firmware version 1.2.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Esp 200 Firmware
NVD
EPSS 3% CVSS 8.8
HIGH This Week

An authenticated attacker can execute arbitrary code using command ejection in Eltex ESP-200 firmware version 1.2.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection Esp 200 Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy