CVEs (4)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Wut 16Com Server ++ Firmware Com Server 20ma FirmwareCom Server Highspeed 100basefx Firmware+13 moreNov 21, 2024 Dec 13, 2022 N/A· v4 8.0 HIGH· v3 N/A· v2 Multiple Wiesemann&Theis products of the ComServer Series are prone to an authentication bypass through IP spoofing. After a user logged in to the WBM of the Com-Server an unauthenticated attacker in the same subnet can...Show more |
1Wut 17At Modem Emulator Firmware Com Server ++ FirmwareCom Server 20ma Firmware+14 moreNov 21, 2024 Nov 15, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Multiple W&T products of the ComServer Series are prone to an authentication bypass. An unathenticated remote attacker, can log in without knowledge of the password by crafting a modified HTTP GET Request. |
1Wut 17At Modem Emulator Firmware Com Server ++ FirmwareCom Server 20ma Firmware+14 moreNov 21, 2024 Nov 10, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Multiple W&T products of the Comserver Series use a small number space for allocating sessions ids. After login of an user an unathenticated remote attacker can brute force the users session id and get access to his acco...Show more |
1Wut 17At Modem Emulator Firmware Com Server ++ FirmwareCom Server 20ma Firmware+14 moreNov 21, 2024 Nov 10, 2022 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Multiple W&T Products of the ComServer Series are prone to an XSS attack. An authenticated remote Attacker can execute arbitrary web scripts or HTML via a crafted payload injected into the title of the configuration webp...Show more |