Skip to main content

Technik Microcontrol

3 CVEs product

Monthly

CVE-2014-8329 CRITICAL Act Now

Schrack Technik microControl with firmware before 1.7.0 (937) stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain access data for. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Technik Microcontrol Firmware Technik Microcontrol
NVD
CVSS 2.0
10.0
EPSS
1.1%
CVE-2014-5396 HIGH POC This Week

The web interface in Schrack Technik microControl with firmware before 1.7.0 (937) has a hardcoded password of not for the "user" account, which makes it easier for remote attackers to obtain access. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Technik Microcontrol Firmware Technik Microcontrol
NVD
CVSS 2.0
7.5
EPSS
0.4%
CVE-2014-5382 MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in the web interface in Schrack Technik microControl with firmware 1.7.0 (937) allow remote attackers to inject arbitrary web script or HTML via. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

XSS Technik Microcontrol Firmware Technik Microcontrol
NVD
CVSS 2.0
4.3
EPSS
0.2%
EPSS 1% CVSS 10.0
CRITICAL Act Now

Schrack Technik microControl with firmware before 1.7.0 (937) stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain access data for. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Technik Microcontrol Firmware Technik Microcontrol
NVD
EPSS 0% CVSS 7.5
HIGH POC This Week

The web interface in Schrack Technik microControl with firmware before 1.7.0 (937) has a hardcoded password of not for the "user" account, which makes it easier for remote attackers to obtain access. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Technik Microcontrol Firmware Technik Microcontrol
NVD
EPSS 0% CVSS 4.3
MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in the web interface in Schrack Technik microControl with firmware 1.7.0 (937) allow remote attackers to inject arbitrary web script or HTML via. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

XSS Technik Microcontrol Firmware Technik Microcontrol
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy