← Back

1734 Aentr Point I/o Dual Port Network Adaptor Series B Firmware

1734-aentr_point_i/o_dual_port_network_adaptor_series_b_firmware

Vendor: Rockwellautomation • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-14504
1Rockwellautomation
21734 Aentr Point I/o Dual Port Network Adaptor Series B Firmware
1734 Aentr Point I/o Dual Port Network Adaptor Series C Firmware
Apr 17, 2025
Feb 24, 2022
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
The web interface of the 1734-AENTR communication module mishandles authentication for HTTP POST requests. A remote, unauthenticated attacker can send a crafted request that may allow for modification of the configuratio...Show more
The web interface of the 1734-AENTR communication module mishandles authentication for HTTP POST requests. A remote, unauthenticated attacker can send a crafted request that may allow for modification of the configuration settings.Show less
CVE-2020-14502
1Rockwellautomation
21734 Aentr Point I/o Dual Port Network Adaptor Series B Firmware
1734 Aentr Point I/o Dual Port Network Adaptor Series C Firmware
Apr 17, 2025
Feb 24, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The web interface of the 1734-AENTR communication module is vulnerable to stored XSS. A remote, unauthenticated attacker could store a malicious script within the web interface that, when executed, could modify some stri...Show more
The web interface of the 1734-AENTR communication module is vulnerable to stored XSS. A remote, unauthenticated attacker could store a malicious script within the web interface that, when executed, could modify some string values on the homepage of the web interface.Show less