Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eaton vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2016-4512
Stack-based buffer overflow in ELCSimulator in Eaton ELCSoft 2.4.01 and previous versions allows remote malicious users to execute arbitrary code via a long packet.
Eaton Elcsoft
6.8
CVSSv2
CVE-2018-7511
In Eaton ELCSoft versions 2.04.02 and prior, there are multiple cases where specially crafted files could cause a buffer overflow which, in turn, may allow remote execution of arbitrary code.
Eaton Elcsoft
6.8
CVSSv2
CVE-2020-6655
The Eaton's easySoft software v7.xx prior to v7.22 are susceptible to Out-of-bounds remote code execution vulnerability. A malicious entity can execute a malicious code or make the application crash by tricking user to upload the malformed .E70 file in the application. The v...
Eaton Easysoft
4
CVSSv2
CVE-2018-9279
An issue exists on Eaton UPS 9PX 8000 SP devices. The appliance discloses the user's password. The web page displayed by the appliance contains the password in cleartext. Passwords could be retrieved by browsing the source code of the webpage.
Eaton 9px Ups Firmware -
6.8
CVSSv2
CVE-2018-9281
An issue exists on Eaton UPS 9PX 8000 SP devices. The administration panel is vulnerable to a CSRF attack on the change-password functionality. This vulnerability could be used to force a logged-in administrator to perform a silent password update. The affected forms are also vul...
Eaton 9px Ups Firmware -
3.5
CVSSv2
CVE-2020-7915
An issue exists on Eaton 5P 850 devices. The Ubicacion SAI field allows XSS attacks by an administrator.
Eaton 5p 850 Firmware -
2.1
CVSSv2
CVE-2020-6653
Eaton's Secure connect mobile app v1.7.3 & prior stores the user login credentials in logcat file when user create or register the account on the Mobile app. A malicious app or unauthorized user can harvest the information and later on can use the information to monitor ...
Eaton Secureconnect
6.8
CVSSv2
CVE-2020-6656
Eaton's easySoft software v7.xx prior to v7.22 are susceptible to file parsing type confusion remote code execution vulnerability. A malicious entity can execute a malicious code or make the application crash by tricking user upload a malformed .E70 file in the application. ...
Eaton Easysoft
7.5
CVSSv2
CVE-2018-8847
Eaton 9000X DriveA versions 2.0.29 and prior has a stack-based buffer overflow vulnerability, which may allow remote code execution.
Eaton 9000x Firmware
4.3
CVSSv2
CVE-2020-10637
Eaton HMiSoft VU3 (HMIVU3 runtime not impacted), Version 3.00.23 and prior, however, the HMIVU runtimes are not impacted by these issues. A specially crafted input file could trigger an out-of-bounds read when loaded by the affected product.
Eaton Hmisoft Vu3 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »