Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kone vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-15484
An issue exists on KONE Group Controller (KGC) devices prior to 4.6.5. Unauthenticated Remote Code Execution is possible through the open HTTP interface by modifying autoexec.bat, aka KONE-01.
Kone Group Controller Firmware
9.1
CVSSv3
CVE-2018-15485
An issue exists on KONE Group Controller (KGC) devices prior to 4.6.5. FTP does not require authentication or authorization, aka KONE-03.
Kone Group Controller Firmware
7.5
CVSSv3
CVE-2018-15483
An issue exists on KONE Group Controller (KGC) devices prior to 4.6.5. Denial of Service can occur through the open HTTP interface, aka KONE-04.
Kone Group Controller Firmware
9.1
CVSSv3
CVE-2018-15486
An issue exists on KONE Group Controller (KGC) devices prior to 4.6.5. Unauthenticated Local File Inclusion and File modification is possible through the open HTTP interface by modifying the name parameter of the file endpoint, aka KONE-02.
Kone Group Controller Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started