Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lion vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2022-1039
The weak password on the web user interface can be exploited via HTTP or HTTPS. Once such access has been obtained, the other passwords can be changed. The weak password on Linux accounts can be accessed via SSH or Telnet, the former of which is by default enabled on trusted inte...
Redlion Da50n Firmware
694
VMScore
CVE-2017-14855
Red Lion HMI panels allow remote malicious users to cause a denial of service (software exception) via an HTTP POST request to a long URI that does not exist, as demonstrated by version HMI 2.41 PLC 2.42.
Redlion Hmi Panel Firmware 2.41
NA
CVE-2023-34412
A vulnerability in Red Lion Europe mbNET/mbNET.rokey and Helmholz REX 200 and REX 250 devices with firmware lower 7.3.2 allows an authenticated remote attacker with high privileges to inject malicious HTML or JavaScript code (XSS).
Helmholz Rex 250 Firmware
Helmholz Rex 200 Firmware
Redlion Mbnet.rokey Rkh 210 Firmware
Redlion Mbnet.rokey Rkh 216 Firmware
Redlion Mbnet.rokey Rkh 235 Firmware
Redlion Mbnet.rokey Rkh 259 Firmware
Redlion Mbnet Mdh 811 Firmware
Redlion Mbnet Mdh 850 Firmware
Redlion Mbnet Mdh 871 Firmware
Redlion Mbnet Mdh 831 Firmware
Redlion Mbnet Mdh 855 Firmware
Redlion Mbnet Mdh 876 Firmware
Redlion Mbnet Mdh 858 Firmware
Redlion Mbnet Mdh 816 Firmware
Redlion Mbnet Mdh 841 Firmware
Redlion Mbnet Mdh 859 Firmware
Redlion Mbnet Mdh 835 Firmware
383
VMScore
CVE-2019-10990
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, uses a hard-coded password to encrypt protected files in transit and at rest, which may allow an malicious user to access configuration files.
Redlion Crimson
605
VMScore
CVE-2019-10984
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious input file that causes the program to mishandle pointers.
Redlion Crimson
605
VMScore
CVE-2019-10978
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious input file that operates outside of the designated memory area.
Redlion Crimson
605
VMScore
CVE-2019-10996
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious input file that can reference memory after it has been freed.
Redlion Crimson
NA
CVE-2023-42770
Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled (UDR-A) any Sixnet UDR message will meet an authentication challenge over UDP/IP. When the same message is received over TCP/IP the RTU will simply accept the message with no authentication challenge.
Redlioncontrols St-ipm-6350 Firmware 4.9.114
Redlioncontrols St-ipm-8460 Firmware 6.0.202
Redlioncontrols Vt-mipm-135-d Firmware 4.9.114
Redlioncontrols Vt-mipm-245-d Firmware 4.9.114
Redlioncontrols Vt-ipm2m-213-d Firmware 4.9.114
Redlioncontrols Vt-ipm2m-113-d Firmware 4.9.114
NA
CVE-2023-4834
In Red Lion Europe mbCONNECT24 and mymbCONNECT24 and Helmholz myREX24 and myREX24.virtual up to and including 2.14.2 an improperly implemented access validation allows an authenticated, low privileged malicious user to gain read access to limited, non-critical device information ...
Helmholz Myrex24
Helmholz Myrex24.virtual
Mbconnectline Mbconnect24
Mbconnectline Mymbconnect24
NA
CVE-2023-40151
When user authentication is not enabled the shell can execute commands with the highest privileges. Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled (UDR-A) any Sixnet UDR message will meet an authentication challenge over UDP/IP. When the same message...
Redlioncontrols St-ipm-6350 Firmware 4.9.114
Redlioncontrols St-ipm-8460 Firmware 6.0.202
Redlioncontrols Vt-mipm-135-d Firmware 4.9.114
Redlioncontrols Vt-mipm-245-d Firmware 4.9.114
Redlioncontrols Vt-ipm2m-213-d Firmware 4.9.114
Redlioncontrols Vt-ipm2m-113-d Firmware 4.9.114
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »