Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gateway firmware vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-42536
The affected product is vulnerable to a disclosure of peer username and password by allowing all users access to read global variables.
Emerson Wireless 1410 Gateway Firmware
Emerson Wireless 1410d Gateway Firmware
Emerson Wireless 1420 Gateway Firmware
8.8
CVSSv3
CVE-2021-42538
The affected product is vulnerable to a parameter injection via passphrase, which enables the malicious user to supply uncontrolled input.
Emerson Wireless 1410 Gateway Firmware
Emerson Wireless 1410d Gateway Firmware
Emerson Wireless 1420 Gateway Firmware
8.8
CVSSv3
CVE-2021-42539
The affected product is vulnerable to a missing permission validation on system backup restore, which could lead to account take over and unapproved settings change.
Emerson Wireless 1410 Gateway Firmware
Emerson Wireless 1410d Gateway Firmware
Emerson Wireless 1420 Gateway Firmware
8.8
CVSSv3
CVE-2021-42540
The affected product is vulnerable to a unsanitized extract folder for system configuration. A low-privileged user can leverage this logic to overwrite the settings and other key functionality.
Emerson Wireless 1410 Gateway Firmware
Emerson Wireless 1410d Gateway Firmware
Emerson Wireless 1420 Gateway Firmware
8.8
CVSSv3
CVE-2021-38485
The affected product is vulnerable to improper input validation in the restore file. This enables an malicious user to provide malicious config files to replace any file on disk.
Emerson Wireless 1410 Gateway Firmware
Emerson Wireless 1410d Gateway Firmware
Emerson Wireless 1420 Gateway Firmware
10
CVSSv3
CVE-2020-12030
There is a flaw in the code used to configure the internal gateway firewall when the gateway's VLAN feature is enabled. If a user enables the VLAN setting, the internal gateway firewall becomes disabled resulting in exposure of all ports used by the gateway.
Emerson Wireless 1410 Gateway Firmware
Emerson Wireless 1420 Gateway Firmware
Emerson Wireless 1552wu Gateway Firmware
8.8
CVSSv3
CVE-2021-42542
The affected product is vulnerable to directory traversal due to mishandling of provided backup folder structure.
Emerson Wireless 1410 Gateway Firmware
Emerson Wireless 1410d Gateway Firmware
Emerson Wireless 1420 Gateway Firmware
5.3
CVSSv3
CVE-2019-10962
BD Alaris Gateway versions, 1.0.13,1.1.3 Build 10,1.1.3 MR Build 11,1.1.5, and 1.1.6, The web browser user interface on the Alaris Gateway Workstation does not prevent an attacker with knowledge of the IP address of the Alaris Gateway Workstation terminal to gain access to the st...
Bd Alaris Gateway Workstation Firmware 1.0.13
Bd Alaris Gateway Workstation Firmware 1.1.3
Bd Alaris Gateway Workstation Firmware 1.1.5
Bd Alaris Gateway Workstation Firmware 1.1.6
1 Article
NA
CVE-2012-4697
TURCK BL20 Programmable Gateway and BL67 Programmable Gateway have hardcoded accounts, which allows remote malicious users to obtain administrative access via an FTP session.
Turck Bl67 Programmable Gateway Firmware -
Turck Bl20 Programmable Gateway -
Turck Bl67 Programmable Gateway -
Turck Bl20 Programmable Gateway Firmware -
9.8
CVSSv3
CVE-2021-30648
The Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are susceptible to an authentication bypass vulnerability. An unauthenticated attacker can execute arbitrary CLI commands, view/modify the appliance configuration and policy, and shutdown/restart the a...
Broadcom Symantec Proxysg
Broadcom Symantec Advanced Secure Gateway S200-30 Firmware
Broadcom Symantec Advanced Secure Gateway S200-40 Firmware
Broadcom Symantec Advanced Secure Gateway S400-20 Firmware
Broadcom Symantec Advanced Secure Gateway S400-30 Firmware
Broadcom Symantec Advanced Secure Gateway S400-40 Firmware
Broadcom Symantec Advanced Secure Gateway 500-10 Firmware
Broadcom Symantec Advanced Secure Gateway S500-20 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »