Ingenico

ingenico

11 CVEs • 3 products

Products (3)

Click to collapse

Toggle

Telium 2 Firmware

telium_2_firmware

Estate Management

estate_management

CVEs (11)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-6059 1Ingenico 1Estate Management Nov 21, 2024 Jun 17, 2024 5.1 MEDIUM· v4 4.8 MEDIUM· v3 3.3 LOW· v2 A vulnerability, which was classified as problematic, has been found in Ingenico Estate Manager 2023. This issue affects some unknown processing of the file /emgui/rest/ums/messages of the component News Feed. The manipu...Show more A vulnerability, which was classified as problematic, has been found in Ingenico Estate Manager 2023. This issue affects some unknown processing of the file /emgui/rest/ums/messages of the component News Feed. The manipulation of the argument message leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-268787. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2018-17774 1Ingenico 1Telium 2 Firmware Nov 21, 2024 Sep 9, 2020 N/A· v4 6.8 MEDIUM· v3 7.2 HIGH· v2 Ingenico Telium 2 POS terminals have an insecure NTPT3 protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.
CVE-2018-17773 1Ingenico 1Telium 2 Firmware Nov 21, 2024 Sep 9, 2020 N/A· v4 6.8 MEDIUM· v3 7.2 HIGH· v2 Ingenico Telium 2 POS terminals have a buffer overflow via SOCKET_TASK in the NTPT3 protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.
CVE-2018-17772 1Ingenico 1Telium 2 Firmware Nov 21, 2024 Sep 9, 2020 N/A· v4 6.8 MEDIUM· v3 7.2 HIGH· v2 Ingenico Telium 2 POS terminals allow arbitrary code execution via the TRACE protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.
CVE-2018-17771 1Ingenico 1Telium 2 Firmware Nov 21, 2024 Sep 9, 2020 N/A· v4 6.6 MEDIUM· v3 7.2 HIGH· v2 Ingenico Telium 2 POS terminals have hardcoded FTP credentials. This is fixed in Telium 2 SDK v9.32.03 patch N.
CVE-2018-17770 1Ingenico 1Telium 2 Firmware Nov 21, 2024 Sep 9, 2020 N/A· v4 6.6 MEDIUM· v3 7.2 HIGH· v2 Ingenico Telium 2 POS terminals have a buffer overflow via the RemotePutFile command of the NTPT3 protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.
CVE-2018-17769 1Ingenico 1Telium 2 Firmware Nov 21, 2024 Sep 9, 2020 N/A· v4 6.6 MEDIUM· v3 7.2 HIGH· v2 Ingenico Telium 2 POS terminals have a buffer overflow via the 0x26 command of the NTPT3 protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.
CVE-2018-17768 1Ingenico 1Telium 2 Firmware Nov 21, 2024 Sep 9, 2020 N/A· v4 6.8 MEDIUM· v3 7.2 HIGH· v2 Ingenico Telium 2 POS terminals have an insecure TRACE protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.
CVE-2018-17767 1Ingenico 1Telium 2 Firmware Nov 21, 2024 Sep 9, 2020 N/A· v4 6.8 MEDIUM· v3 7.2 HIGH· v2 Ingenico Telium 2 POS terminals have hardcoded PPP credentials. This is fixed in Telium 2 SDK v9.32.03 patch N.
CVE-2018-17766 1Ingenico 1Telium 2 Firmware Nov 21, 2024 Sep 9, 2020 N/A· v4 4.6 MEDIUM· v3 2.1 LOW· v2 Ingenico Telium 2 POS Telium2 OS allow bypass of file-reading restrictions via the NTPT3 protocol. This is fixed in Telium 2 SDK v9.32.03 patch N.
CVE-2018-17765 1Ingenico 1Telium 2 Firmware Nov 21, 2024 Sep 9, 2020 N/A· v4 6.8 MEDIUM· v3 7.2 HIGH· v2 Ingenico Telium 2 POS terminals have undeclared TRACE protocol commands. This is fixed in Telium 2 SDK v9.32.03 patch N.