Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
computrols computrols building automation software vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-10848
Computrols CBAS 18.0.0 allows Username Enumeration.
Computrols Computrols Building Automation Software
1 EDB exploit
6.8
CVSSv2
CVE-2019-10847
Computrols CBAS 18.0.0 allows Cross-Site Request Forgery.
Computrols Computrols Building Automation Software
1 EDB exploit
5
CVSSv2
CVE-2019-10849
Computrols CBAS 18.0.0 allows unprotected Subversion (SVN) directory / source code disclosure.
Computrols Computrols Building Automation Software
1 EDB exploit
10
CVSSv2
CVE-2019-10850
Computrols CBAS 18.0.0 has Default Credentials.
Computrols Computrols Building Automation Software
4
CVSSv2
CVE-2019-10851
Computrols CBAS 18.0.0 has hard-coded encryption keys.
Computrols Computrols Building Automation Software
5
CVSSv2
CVE-2019-10855
Computrols CBAS 18.0.0 mishandles password hashes. The approach is MD5 with a pw prefix, e.g., if the password is admin, it will calculate the MD5 hash of pwadmin and store it in a MySQL database.
Computrols Computrols Building Automation Software
9
CVSSv2
CVE-2019-10854
Computrols CBAS 18.0.0 allows Authenticated Command Injection.
Computrols Computrols Building Automation Software
6.5
CVSSv2
CVE-2019-10852
Computrols CBAS 18.0.0 allows Authenticated Blind SQL Injection via the id GET parameter, as demonstrated by the index.php?m=servers&a=start_pulling&id= substring.
Computrols Computrols Building Automation Software
8.3
CVSSv2
CVE-2019-10853
Computrols CBAS 18.0.0 allows Authentication Bypass.
Computrols Computrols Building Automation Software
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started