Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
franklinfueling ts-550 evo - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-7247
cgi-bin/tsaws.cgi in Franklin Fueling Systems TS-550 evo with firmware 2.0.0.6833 and other versions prior to 2.4.0 allows remote malicious users to discover sensitive information (user names and password hashes) via the cmdWebGetConfiguration action in a TSA_REQUEST.
Franklinfueling Ts-550 Evo Firmware 2.0.0.6833
Franklinfueling Ts-550 Evo Firmware 2.3.1.7492
Franklinfueling Ts-550 Evo -
1 EDB exploit
NA
CVE-2013-7248
Franklin Fueling Systems TS-550 evo with firmware 2.0.0.6833 and other versions prior to 2.4.0 has a hardcoded password for the roleDiag account, which allows remote malicious users to gain root privileges, as demonstrated using a cmdWebCheckRole action in a TSA_REQUEST.
Franklinfueling Ts-550 Evo Firmware 2.3.1.7492
Franklinfueling Ts-550 Evo Firmware 2.0.0.6833
Franklinfueling Ts-550 Evo -
1 EDB exploit
7.5
CVSSv3
CVE-2021-46420
Franklin Fueling Systems FFS TS-550 evo 2.23.4.8936 is affected by an unauthenticated directory traversal vulnerability, which allows an malicious user to obtain sensitive information.
Franklinfueling Ts-550 Evo Firmware 2.23.4.8936
8.8
CVSSv3
CVE-2017-6565
On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the roleDiag user, which can be obtained by exploiting CVE-2013-7247, has the ability to upload files to the server hosting the web service. As no sanitization checks are in place, an attacker can upload a malicious paylo...
Franklinfueling Ts-550 Evo Firmware 2.3.0.7332
6.5
CVSSv3
CVE-2017-6564
On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the Guest user, which contains the lowest privileges, can post to the idSourceFileName parameter found within the /download directory. This ability allows for an malicious user to download sensitive system files from the ...
Franklinfueling Ts-550 Evo Firmware 2.3.0.7332
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started