Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ovarro twinsoft vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-22640
An attacker can decrypt the Ovarro TBox login password by communication capture and brute force attacks.
Ovarro Twinsoft
Ovarro Tbox Lt2-530 Firmware
Ovarro Tbox Lt2-532 Firmware
Ovarro Tbox Lt2-540 Firmware
Ovarro Tbox Ms-cpu32 Firmware
Ovarro Tbox Ms-cpu32-s2 Firmware
Ovarro Tbox Rm2 Firmware
Ovarro Tbox Tg2 Firmware
NA
CVE-2021-22642
An attacker could use specially crafted invalid Modbus frames to crash the Ovarro TBox system.
Ovarro Twinsoft
Ovarro Tbox Lt2-530 Firmware
Ovarro Tbox Lt2-532 Firmware
Ovarro Tbox Lt2-540 Firmware
Ovarro Tbox Ms-cpu32 Firmware
Ovarro Tbox Ms-cpu32-s2 Firmware
Ovarro Tbox Rm2 Firmware
Ovarro Tbox Tg2 Firmware
NA
CVE-2021-22646
The “ipk” package containing the configuration created by TWinSoft can be uploaded, extracted, and executed in Ovarro TBox, allowing malicious code execution.
Ovarro Twinsoft
Ovarro Tbox Lt2-530 Firmware
Ovarro Tbox Lt2-532 Firmware
Ovarro Tbox Lt2-540 Firmware
Ovarro Tbox Ms-cpu32 Firmware
Ovarro Tbox Ms-cpu32-s2 Firmware
Ovarro Tbox Rm2 Firmware
Ovarro Tbox Tg2 Firmware
NA
CVE-2021-22648
Ovarro TBox proprietary Modbus file access functions allow malicious users to read, alter, or delete the configuration file.
Ovarro Twinsoft
Ovarro Tbox Lt2-530 Firmware
Ovarro Tbox Lt2-532 Firmware
Ovarro Tbox Lt2-540 Firmware
Ovarro Tbox Ms-cpu32 Firmware
Ovarro Tbox Ms-cpu32-s2 Firmware
Ovarro Tbox Rm2 Firmware
Ovarro Tbox Tg2 Firmware
NA
CVE-2021-22650
An attacker may use TWinSoft and a malicious source project file (TPG) to extract files on machine executing Ovarro TWinSoft, which could lead to code execution.
Ovarro Twinsoft
Ovarro Tbox Lt2-530 Firmware
Ovarro Tbox Lt2-532 Firmware
Ovarro Tbox Lt2-540 Firmware
Ovarro Tbox Ms-cpu32 Firmware
Ovarro Tbox Ms-cpu32-s2 Firmware
Ovarro Tbox Rm2 Firmware
Ovarro Tbox Tg2 Firmware
NA
CVE-2021-22644
Ovarro TBox TWinSoft uses the custom hardcoded user “TWinSoft” with a hardcoded key.
Ovarro Twinsoft
Ovarro Tbox Lt2-530 Firmware
Ovarro Tbox Lt2-532 Firmware
Ovarro Tbox Lt2-540 Firmware
Ovarro Tbox Ms-cpu32 Firmware
Ovarro Tbox Ms-cpu32-s2 Firmware
Ovarro Tbox Rm2 Firmware
Ovarro Tbox Tg2 Firmware
NA
CVE-2023-3395
?All versions of the TWinSoft Configuration Tool store encrypted passwords as plaintext in memory. An attacker with access to system files could open a file to load the document into memory, including sensitive information associated with document, such as password. The attacker...
Ovarro Tbox Ms-cpu32 Firmware -
Ovarro Tbox Ms-cpu32-s2 Firmware -
Ovarro Tbox Lt2 Firmware -
Ovarro Tbox Tg2 Firmware -
Ovarro Tbox Rm2 Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started