← Back

Infinias Eidc32 Firmware

infinias_eidc32_firmware

Vendor: 3xlogic • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-12681
13xlogic
1Infinias Eidc32 Firmware
Nov 21, 2024
Jul 26, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Missing TLS certificate validation on 3xLogic Infinias eIDC32 devices through 3.4.125 allows an attacker to intercept/control the channel by which door lock policies are applied.
CVE-2020-11542
13xlogic
2Infinias Eidc32 Firmware
Infinias Eidc32 Web
Nov 21, 2024
Apr 4, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side's interpretation of the <KEY>MYKEY</KEY> substring.