← Back

Pcoweb Card Firmware

pcoweb_card_firmware

Vendor: Carel • 4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-37122
1Carel
3Applica
Pcoweb Card FirmwarePcoweb Hvac Bacnet Gateway
Nov 21, 2024
Aug 31, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Carel pCOWeb HVAC BACnet Gateway 2.1.0, Firmware: A2.1.0 - B2.1.0, Application Software: 2.15.4A Software v16 13020200 suffers from an unauthenticated arbitrary file disclosure vulnerability. Input passed through the 'fi...Show more
Carel pCOWeb HVAC BACnet Gateway 2.1.0, Firmware: A2.1.0 - B2.1.0, Application Software: 2.15.4A Software v16 13020200 suffers from an unauthenticated arbitrary file disclosure vulnerability. Input passed through the 'file' GET parameter through the 'logdownload.cgi' Bash script is not properly verified before being used to download log files. This can be exploited to disclose the contents of arbitrary and sensitive files via directory traversal attacks.Show less
CVE-2019-11370
1Carel
1Pcoweb Card Firmware
Jun 17, 2026
Jun 3, 2019
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
Stored XSS was discovered in Carel pCOWeb prior to B1.2.4, as demonstrated by the config/pw_snmp.html "System contact" field.
CVE-2019-11369
1Carel
1Pcoweb Card Firmware
Jun 17, 2026
Jun 3, 2019
N/A· v4
8.8 HIGH· v3
4.0 MEDIUM· v2
An issue was discovered in Carel pCOWeb prior to B1.2.4. In /config/pw_changeusers.html the device stores cleartext passwords, which may allow sensitive information to be read by someone with access to the device.
CVE-2019-9484
1Carel
1Pcoweb Card Firmware
Jun 17, 2026
Mar 1, 2019
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The Glen Dimplex Deutschland GmbH implementation of the Carel pCOWeb configuration tool allows remote attackers to obtain access via an HTTP session on port 10000, as demonstrated by reading the modem password (which is...Show more
The Glen Dimplex Deutschland GmbH implementation of the Carel pCOWeb configuration tool allows remote attackers to obtain access via an HTTP session on port 10000, as demonstrated by reading the modem password (which is 1234), or reconfiguring "party mode" or "vacation mode."Show less