HIGH🇵🇱 Wersja polska

CVE-2013-7248

CVSS 10.0v2.0pub. 2014-01-26upd. 2026-04-29

Franklin Fueling Systems TS-550 evo with firmware 2.0.0.6833 and other versions before 2.4.0 has a hardcoded password for the roleDiag account, which allows remote attackers to gain root privileges, as demonstrated using a cmdWebCheckRole action in a TSA_REQUEST.

CVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
  • Franklinfueling Ts 550 Evo

    HW
    Franklinfueling
    wszystkie wersje
  • Franklinfueling Ts 550 Evo Firmware

    OS
    Franklinfueling
    2.0.0.68332.3.1.7492
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-5846HIGH8.3ten sam produkt

Franklin Fueling System TS-550 versions prior to 1.9.23.8960 are vulnerable to attackers decoding admin crede...

CVE-2021-46420HIGH7.5ten sam produkt

Franklin Fueling Systems FFS TS-550 evo 2.23.4.8936 is affected by an unauthenticated directory traversal vuln...

CVE-2021-46421HIGH7.5ten sam produkt

Franklin Fueling Systems FFS T5 Series 1.8.7.7299 is affected by an unauthenticated directory traversal vulner...

CVE-2017-6565HIGH8.8ten sam produkt

On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the roleDiag user, which can be obtained by exploit...

CVE-2017-6564MEDIUM6.5ten sam produkt

On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the Guest user, which contains the lowest privilege...