← Back

Kyland

kyland

2 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Kps2204 6 Port Managed Din Rail Programmable Serial Device Firmware
kps2204_6_port_managed_din-rail_programmable_serial_device_firmware
2 CVEs
Kps2204 6 Port Managed Din Rail Programmable Serial Device
kps2204_6_port_managed_din-rail_programmable_serial_device
0 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-25011
1Kyland
1Kps2204 6 Port Managed Din Rail Programmable Serial Device Firmware
Nov 21, 2024
Dec 17, 2020
N/A· v4
9.8 CRITICAL· v3
5.0 MEDIUM· v2
A sensitive information disclosure vulnerability in Kyland KPS2204 6 Port Managed Din-Rail Programmable Serial Device Servers Software Version:R0002.P05 allows remote attackers to get username and password by request /cg...Show more
A sensitive information disclosure vulnerability in Kyland KPS2204 6 Port Managed Din-Rail Programmable Serial Device Servers Software Version:R0002.P05 allows remote attackers to get username and password by request /cgi-bin/webadminget.cgi script via the browser.Show less
CVE-2020-25010
1Kyland
1Kps2204 6 Port Managed Din Rail Programmable Serial Device Firmware
Nov 21, 2024
Dec 17, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An arbitrary code execution vulnerability in Kyland KPS2204 6 Port Managed Din-Rail Programmable Serial Device Servers Software Version:R0002.P05 allows remote attackers to upload a malicious script file by constructing...Show more
An arbitrary code execution vulnerability in Kyland KPS2204 6 Port Managed Din-Rail Programmable Serial Device Servers Software Version:R0002.P05 allows remote attackers to upload a malicious script file by constructing a POST type request and writing a payload in the request parameters as an instruction to write a file.Show less