Skip to main content

Ethernet Ip Firmware

3 CVEs product

Monthly

CVE-2024-5849 HIGH This Week

An unauthenticated remote attacker may use a reflected XSS vulnerability to obtain information from a user or reboot the affected device once. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Icdm Rx Tcp Socketserver Firmware Profinet Firmware Profinet Modbus Firmware Modbus Router Firmware +4
NVD
CVSS 3.1
7.1
EPSS
0.4%
CVE-2024-38502 HIGH This Week

An unauthenticated remote attacker may use stored XSS vulnerability to obtain information from a user or reboot the affected device once. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Icdm Rx Tcp Socketserver Firmware Profinet Firmware Profinet Modbus Firmware Modbus Router Firmware +4
NVD
CVSS 3.1
7.1
EPSS
0.3%
CVE-2024-38501 MEDIUM This Month

An unauthenticated remote attacker may use a HTML injection vulnerability with limited length to inject malicious HTML code and gain low-privileged access on the affected device. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Icdm Rx Tcp Socketserver Firmware Profinet Firmware Profinet Modbus Firmware Modbus Router Firmware +4
NVD
CVSS 3.1
6.1
EPSS
0.3%
EPSS 0% CVSS 7.1
HIGH This Week

An unauthenticated remote attacker may use a reflected XSS vulnerability to obtain information from a user or reboot the affected device once. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Icdm Rx Tcp Socketserver Firmware Profinet Firmware +6
NVD
EPSS 0% CVSS 7.1
HIGH This Week

An unauthenticated remote attacker may use stored XSS vulnerability to obtain information from a user or reboot the affected device once. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Icdm Rx Tcp Socketserver Firmware Profinet Firmware +6
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

An unauthenticated remote attacker may use a HTML injection vulnerability with limited length to inject malicious HTML code and gain low-privileged access on the affected device. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Icdm Rx Tcp Socketserver Firmware Profinet Firmware +6
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy