Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sds vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-25366
In Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS, insecure SCPI interface discloses web password.
Siglent Sds 1104x-e Firmware Sds1xx4x-e V6.1.37r9.ads
1 Github repository
7.5
CVSSv3
CVE-2023-25368
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS is vulnerable to Incorrect Access Control. An unauthenticated attacker can overwrite firmnware.
Siglent Sds1204x-e Firmware 6.1.37r9.ads
Siglent Sds1104x-e Firmware 6.1.37r9.ads
Siglent Sds1074x-e Firmware 6.1.37r9.ads
1 Github repository
7.5
CVSSv3
CVE-2023-25369
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS is vulnerable to Denial of Service on the user interface triggered by malformed SCPI command.
Siglent Sds1204x-e Firmware 6.1.37r9.ads
Siglent Sds1104x-e Firmware 6.1.37r9.ads
Siglent Sds1074x-e Firmware 6.1.37r9.ads
1 Github repository
9.8
CVSSv3
CVE-2023-25367
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS allows unfiltered user input resulting in Remote Code Execution (RCE) with SCPI interface or web server.
Siglent Sds1204x-e Firmware 6.1.37r9.ads
Siglent Sds1104x-e Firmware 6.1.37r9.ads
Siglent Sds1074x-e Firmware 6.1.37r9.ads
1 Github repository
5.3
CVSSv3
CVE-2022-40691
An information disclosure vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this vul...
Moxa Sds-3008 Firmware
Moxa Sds-3008-t Firmware
7.5
CVSSv3
CVE-2022-40693
A cleartext transmission vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted network sniffing can lead to a disclosure of sensitive information. An attacker can sniff network traffic to trigger this...
Moxa Sds-3008 Firmware
Moxa Sds-3008-t Firmware
5.4
CVSSv3
CVE-2022-41311
A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this vulner...
Moxa Sds-3008 Firmware
Moxa Sds-3008-t Firmware
5.4
CVSSv3
CVE-2022-41312
A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this vulner...
Moxa Sds-3008 Firmware
Moxa Sds-3008-t Firmware
5.4
CVSSv3
CVE-2022-41313
A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this vulner...
Moxa Sds-3008 Firmware
Moxa Sds-3008-t Firmware
7.5
CVSSv3
CVE-2022-40224
A denial of service vulnerability exists in the web server functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP message header can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability.
Moxa Sds-3008 Firmware
Moxa Sds-3008-t Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »