Skip to main content

Ewon Flexy Firmware

2 CVEs product

Monthly

CVE-2020-16230 LOW Monitor

All version of Ewon Flexy and Cosy prior to 14.1 use wildcards such as (*) under which domains can request resources. Rated low severity (CVSS 2.3), this vulnerability is low attack complexity. No vendor patch available.

Code Injection Ewon Flexy Firmware Ewon Cosy Firmware
NVD
CVSS 3.1
2.3
EPSS
0.3%
CVE-2020-10633 MEDIUM This Month

A non-persistent XSS (cross-site scripting) vulnerability exists in eWON Flexy and Cosy (all firmware versions prior to 14.1s0). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Ewon Flexy Firmware Ewon Cosy Firmware
NVD
CVSS 3.1
6.1
EPSS
0.7%
EPSS 0% CVSS 2.3
LOW Monitor

All version of Ewon Flexy and Cosy prior to 14.1 use wildcards such as (*) under which domains can request resources. Rated low severity (CVSS 2.3), this vulnerability is low attack complexity. No vendor patch available.

Code Injection Ewon Flexy Firmware Ewon Cosy Firmware
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

A non-persistent XSS (cross-site scripting) vulnerability exists in eWON Flexy and Cosy (all firmware versions prior to 14.1s0). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Ewon Flexy Firmware Ewon Cosy Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy