Skip to main content

Ozw772 Firmware

6 CVEs product

Monthly

CVE-2025-26390 CRITICAL This Week

A vulnerability has been identified in OZW672 (All versions < V6.0), OZW772 (All versions < V6.0). Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Ozw672 Firmware Ozw772 Firmware
NVD
CVSS 4.0
9.3
EPSS
0.3%
CVE-2025-26389 CRITICAL This Week

A vulnerability has been identified in OZW672 (All versions < V8.0), OZW772 (All versions < V8.0). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection RCE Ozw672 Firmware Ozw772 Firmware
NVD
CVSS 4.0
10.0
EPSS
1.1%
CVE-2024-36140 HIGH This Week

A vulnerability has been identified in OZW672 (All versions < V5.2), OZW772 (All versions < V5.2). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Ozw672 Firmware Ozw772 Firmware
NVD
CVSS 4.0
8.2
EPSS
0.3%
CVE-2017-6873 HIGH This Week

A vulnerability was discovered in Siemens OZW672 (all versions) and OZW772 (all versions) that could allow an attacker to read and manipulate data in TLS sessions while performing a man-in-the-middle. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Siemens Authentication Bypass Ozw772 Firmware Ozw672 Firmware
NVD
CVSS 3.0
7.4
EPSS
0.2%
CVE-2017-6872 MEDIUM This Month

A vulnerability was discovered in Siemens OZW672 (all versions) and OZW772 (all versions) that could allow an attacker with access to port 21/tcp to access or alter historical measurement data stored. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Siemens Authentication Bypass Ozw772 Firmware Ozw672 Firmware
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-1488 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the login form in the integrated web server on Siemens OZW OZW672 devices before 6.00 and OZW772 devices before 6.00 allows remote attackers to inject. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Siemens Ozw672 Firmware Ozw772 Firmware
NVD
CVSS 3.0
6.1
EPSS
0.2%
EPSS 0% CVSS 9.3
CRITICAL This Week

A vulnerability has been identified in OZW672 (All versions < V6.0), OZW772 (All versions < V6.0). Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Ozw672 Firmware Ozw772 Firmware
NVD
EPSS 1% CVSS 10.0
CRITICAL This Week

A vulnerability has been identified in OZW672 (All versions < V8.0), OZW772 (All versions < V8.0). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection RCE Ozw672 Firmware +1
NVD
EPSS 0% CVSS 8.2
HIGH This Week

A vulnerability has been identified in OZW672 (All versions < V5.2), OZW772 (All versions < V5.2). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Ozw672 Firmware Ozw772 Firmware
NVD
EPSS 0% CVSS 7.4
HIGH This Week

A vulnerability was discovered in Siemens OZW672 (all versions) and OZW772 (all versions) that could allow an attacker to read and manipulate data in TLS sessions while performing a man-in-the-middle. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Siemens Authentication Bypass Ozw772 Firmware +1
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

A vulnerability was discovered in Siemens OZW672 (all versions) and OZW772 (all versions) that could allow an attacker with access to port 21/tcp to access or alter historical measurement data stored. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Siemens Authentication Bypass Ozw772 Firmware +1
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the login form in the integrated web server on Siemens OZW OZW672 devices before 6.00 and OZW772 devices before 6.00 allows remote attackers to inject. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Siemens Ozw672 Firmware +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy