Skip to main content

Progauge Maglink Lx4 Console Firmware

6 CVEs product

Monthly

CVE-2024-45373 HIGH This Week

Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
CVSS 4.0
8.7
EPSS
0.4%
CVE-2024-45066 CRITICAL Act Now

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP sub-menu can allow a remote attacker to inject arbitrary commands. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
CVSS 4.0
10.0
EPSS
0.8%
CVE-2024-43693 CRITICAL Act Now

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a remote attacker to inject arbitrary commands. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
CVSS 4.0
10.0
EPSS
0.8%
CVE-2024-43692 CRITICAL Act Now

An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full privileges by requesting the URL directly. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
CVSS 4.0
9.3
EPSS
0.5%
CVE-2024-43423 CRITICAL Act Now

The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
CVSS 4.0
9.3
EPSS
0.7%
CVE-2024-41725 HIGH This Week

ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input fields that are used to render pages which may allow cross site scripting. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
CVSS 4.0
8.7
EPSS
0.3%
EPSS 0% CVSS 8.7
HIGH This Week

Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
EPSS 1% CVSS 10.0
CRITICAL Act Now

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP sub-menu can allow a remote attacker to inject arbitrary commands. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
EPSS 1% CVSS 10.0
CRITICAL Act Now

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a remote attacker to inject arbitrary commands. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
EPSS 1% CVSS 9.3
CRITICAL Act Now

An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full privileges by requesting the URL directly. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
EPSS 1% CVSS 9.3
CRITICAL Act Now

The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD
EPSS 0% CVSS 8.7
HIGH This Week

ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input fields that are used to render pages which may allow cross site scripting. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Progauge Maglink Lx Console Firmware Progauge Maglink Lx4 Console Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy