In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.8 serious issue exists, if the application is not externally accessible or uses IP-based access restrictions. Attackers can use DNS Rebinding to bypass any IP or firewall based access restrictions that may be in place, by proxying through their target's browser.
oryginał ENCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HPepperl Fuchs Wha Gw F2d2 0 As Z2 Eth
HWPepperl-Fuchswszystkie wersjePepperl Fuchs Wha Gw F2d2 0 As Z2 Eth.eip
HWPepperl-Fuchswszystkie wersjePepperl Fuchs Wha Gw F2d2 0 As Z2 Eth.eip Firmware
OSPepperl-Fuchs≤ 3.0.8Pepperl Fuchs Wha Gw F2d2 0 As Z2 Eth Firmware
OSPepperl-Fuchs≤ 3.0.8
Powiązane podatności
In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded cr...
In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.7 the filename parameter is vulnerable to unauthenticated path tr...
In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.9 a form contains a password field with autocomplete enabled. The...
Any cookie-stealing vulnerabilities within the application or browser would enable an attacker to steal the us...
In PEPPERL+FUCHS WirelessHART-Gateway 3.0.8 it is possible to inject arbitrary JavaScript into the application...