Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knx vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-22732
Improper Privilege Management vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause a code execution issue when an attacker loads unauthorized code on the web server.
Schneider-electric Spacelynk Firmware
Schneider-electric Homelynk Firmware
7.2
CVSSv3
CVE-2021-22734
Improper Verification of Cryptographic Signature vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause remote code execution when an attacker loads unauthorized code.
Schneider-electric Spacelynk Firmware
Schneider-electric Homelynk Firmware
7.5
CVSSv3
CVE-2021-22736
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could cause a denial of service when an unauthorized file is uploaded.
Schneider-electric Spacelynk Firmware
Schneider-electric Homelynk Firmware
9.8
CVSSv3
CVE-2021-22738
Use of a Broken or Risky Cryptographic Algorithm vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior that could cause unauthorized access when credentials are discovered after a brute force attack.
Schneider-electric Spacelynk Firmware
Schneider-electric Homelynk Firmware
7.5
CVSSv3
CVE-2020-7525
Improper Restriction of Excessive Authentication Attempts vulnerability exists in all hardware versions of spaceLYnk and Wiser for KNX (formerly homeLYnk) which could allow an malicious user to guess a password when brute force is used.
Schneider-electric Spacelynk Firmware
Schneider-electric Wiser For Knx Firmware
7.5
CVSSv3
CVE-2019-19643
ise smart connect KNX Vaillant 1.2.839 contain a Denial of Service.
Ise Smart Connect Knx Vaillant 1.2.839
7.5
CVSSv3
CVE-2019-6836
A CWE-863: Incorrect Authorization vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), which could allow the fi...
Schneider-electric Meg6501-0001 Firmware
Schneider-electric Meg6501-0002 Firmware
Schneider-electric Meg6260-0410 Firmware
Schneider-electric Meg6260-0415 Firmware
6.5
CVSSv3
CVE-2019-6838
A CWE-863: Incorrect Authorization vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), which could allow a user...
Schneider-electric Meg6501-0001 Firmware
Schneider-electric Meg6501-0002 Firmware
Schneider-electric Meg6260-0410 Firmware
Schneider-electric Meg6260-0415 Firmware
9.8
CVSSv3
CVE-2019-6840
A Format String: CWE-134 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15), which could allow an malicious use...
Schneider-electric Meg6501-0001 Firmware
Schneider-electric Meg6501-0002 Firmware
Schneider-electric Meg6260-0410 Firmware
Schneider-electric Meg6260-0415 Firmware
8.3
CVSSv3
CVE-2019-6832
A CWE-287: Authentication vulnerability exists in spaceLYnk (all versions prior to 2.4.0) and Wiser for KNX (all versions prior to 2.4.0 - formerly known as homeLYnk), which could cause loss of control when an attacker bypasses the authentication.
Schneider-electric Wiser For Knx Firmware
Schneider-electric Spacelynk Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »