Skip to main content

Sage Rtu Firmware

6 CVEs product

Monthly

CVE-2024-5560 HIGH PATCH This Week

device’s web interface when an attacker sends a specially crafted HTTP request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Denial Of Service Sage Rtu Firmware
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2024-37040 HIGH PATCH This Week

exists that could allow a user with access to the device’s web interface to cause a fault on the device when sending a malformed HTTP request. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Sage Rtu Firmware
NVD
CVSS 3.1
8.1
EPSS
0.4%
CVE-2024-37039 HIGH PATCH This Week

device when an attacker sends a specially crafted HTTP request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Sage Rtu Firmware
NVD
CVSS 3.1
7.5
EPSS
0.8%
CVE-2024-37038 HIGH PATCH This Week

user with access to the device’s web interface to perform unauthorized file and firmware uploads when crafting custom web requests. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Sage Rtu Firmware
NVD
CVSS 3.1
8.8
EPSS
0.4%
CVE-2024-37037 HIGH PATCH This Week

Traversal’) vulnerability exists that could allow an authenticated user with access to the device’s web interface to corrupt files and impact device functionality when sending a crafted HTTP request. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Sage Rtu Firmware
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2024-37036 CRITICAL Act Now

when sending a malformed POST request and particular configuration parameters are set. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Buffer Overflow Memory Corruption Sage Rtu Firmware
NVD
CVSS 3.1
9.8
EPSS
0.5%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

device’s web interface when an attacker sends a specially crafted HTTP request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Denial Of Service +1
NVD
EPSS 0% CVSS 8.1
HIGH PATCH This Week

exists that could allow a user with access to the device’s web interface to cause a fault on the device when sending a malformed HTTP request. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Sage Rtu Firmware
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

device when an attacker sends a specially crafted HTTP request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Sage Rtu Firmware
NVD
EPSS 0% CVSS 8.8
HIGH PATCH This Week

user with access to the device’s web interface to perform unauthorized file and firmware uploads when crafting custom web requests. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Sage Rtu Firmware
NVD
EPSS 1% CVSS 8.1
HIGH PATCH This Week

Traversal’) vulnerability exists that could allow an authenticated user with access to the device’s web interface to corrupt files and impact device functionality when sending a crafted HTTP request. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Sage Rtu Firmware
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

when sending a malformed POST request and particular configuration parameters are set. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Buffer Overflow Memory Corruption +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy