Sel 451 Firmware

sel-451_firmware

Vendor: Selinc • 5 CVEs

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-34390 1Selinc 1Sel 451 Firmware Nov 21, 2024 Nov 30, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An input validation vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow a remote authenticated attacker to create a denial of service against the system and locking out services. See product I...Show more An input validation vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow a remote authenticated attacker to create a denial of service against the system and locking out services. See product Instruction Manual Appendix A dated 20230830 for more details. Show less
CVE-2023-34389 1Selinc 1Sel 451 Firmware Nov 21, 2024 Nov 30, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An allocation of resources without limits or throttling vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow a remote authenticated attacker to make the system unavailable for an indefinite amount...Show more An allocation of resources without limits or throttling vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow a remote authenticated attacker to make the system unavailable for an indefinite amount of time. See product Instruction Manual Appendix A dated 20230830 for more details. Show less
CVE-2023-34388 1Selinc 1Sel 451 Firmware Nov 21, 2024 Nov 30, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An Improper Authentication vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow a remote unauthenticated attacker to potentially perform session hijacking attack and bypass authentication. See...Show more An Improper Authentication vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow a remote unauthenticated attacker to potentially perform session hijacking attack and bypass authentication. See product Instruction Manual Appendix A dated 20230830 for more details. Show less
CVE-2023-31177 1Selinc 1Sel 451 Firmware Nov 21, 2024 Nov 30, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in the Schweitzer Engineering Laboratories SEL-451 could allow an attacker to craft a link that could execute arbitrary code on a v...Show more An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in the Schweitzer Engineering Laboratories SEL-451 could allow an attacker to craft a link that could execute arbitrary code on a victim's system. See product Instruction Manual Appendix A dated 20230830 for more details. Show less
CVE-2023-31176 1Selinc 1Sel 451 Firmware Nov 21, 2024 Nov 30, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An Insufficient Entropy vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow an unauthenticated remote attacker to brute-force session tokens and bypass authentication. See product Instruction...Show more An Insufficient Entropy vulnerability in the Schweitzer Engineering Laboratories SEL-451 could allow an unauthenticated remote attacker to brute-force session tokens and bypass authentication. See product Instruction Manual Appendix A dated 20230830 for more details. Show less