Skip to main content

Multiflex M10A Controller Firmware

5 CVEs product

Monthly

CVE-2017-14013 MEDIUM This Month

A Client-Side Enforcement of Server-Side Security issue was discovered in ProMinent MultiFLEX M10a Controller web interface. Rated medium severity (CVSS 5.6), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Multiflex M10A Controller Firmware
NVD
CVSS 3.0
5.6
EPSS
0.3%
CVE-2017-14011 HIGH This Week

A Cross-Site Request Forgery issue was discovered in ProMinent MultiFLEX M10a Controller web interface. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Multiflex M10A Controller Firmware
NVD
CVSS 3.0
8.8
EPSS
0.1%
CVE-2017-14009 MEDIUM This Month

An Information Exposure issue was discovered in ProMinent MultiFLEX M10a Controller web interface. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Multiflex M10A Controller Firmware
NVD
CVSS 3.0
6.5
EPSS
0.3%
CVE-2017-14007 MEDIUM This Month

An Insufficient Session Expiration issue was discovered in ProMinent MultiFLEX M10a Controller web interface. Rated medium severity (CVSS 5.6), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Multiflex M10A Controller Firmware
NVD
CVSS 3.0
5.6
EPSS
0.2%
CVE-2017-14005 HIGH This Week

An Unverified Password Change issue was discovered in ProMinent MultiFLEX M10a Controller web interface. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Multiflex M10A Controller Firmware
NVD
CVSS 3.0
8.8
EPSS
0.4%
EPSS 0% CVSS 5.6
MEDIUM This Month

A Client-Side Enforcement of Server-Side Security issue was discovered in ProMinent MultiFLEX M10a Controller web interface. Rated medium severity (CVSS 5.6), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Multiflex M10A Controller Firmware
NVD
EPSS 0% CVSS 8.8
HIGH This Week

A Cross-Site Request Forgery issue was discovered in ProMinent MultiFLEX M10a Controller web interface. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Multiflex M10A Controller Firmware
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

An Information Exposure issue was discovered in ProMinent MultiFLEX M10a Controller web interface. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Multiflex M10A Controller Firmware
NVD
EPSS 0% CVSS 5.6
MEDIUM This Month

An Insufficient Session Expiration issue was discovered in ProMinent MultiFLEX M10a Controller web interface. Rated medium severity (CVSS 5.6), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Multiflex M10A Controller Firmware
NVD
EPSS 0% CVSS 8.8
HIGH This Week

An Unverified Password Change issue was discovered in ProMinent MultiFLEX M10a Controller web interface. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Multiflex M10A Controller Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy