Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hms-networks ewon flexy firmware vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2020-10633
A non-persistent XSS (cross-site scripting) vulnerability exists in eWON Flexy and Cosy (all firmware versions before 14.1s0). An attacker could send a specially crafted URL to initiate a password change for the device. The target must introduce the credentials to the gateway bef...
Hms-networks Ewon Flexy Firmware
Hms-networks Ewon Cosy Firmware
187
VMScore
CVE-2020-16230
All version of Ewon Flexy and Cosy before 14.1 use wildcards such as (*) under which domains can request resources. An attacker with local access and high privileges could inject scripts into the Cross-origin Resource Sharing (CORS) configuration that could abuse this vulnerabili...
Hms-networks Ewon Flexy Firmware
Hms-networks Ewon Cosy Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started