Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS allows unfiltered user input resulting in Remote Code Execution (RCE) with SCPI interface or web server.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HSiglent Sds1074x E
HWSiglentwszystkie wersjeSiglent Sds1074x E Firmware
OSSiglent6.1.37r9.adsSiglent Sds1104x E
HWSiglentwszystkie wersjeSiglent Sds1104x E Firmware
OSSiglent6.1.37r9.adsSiglent Sds1204x E
HWSiglentwszystkie wersjeSiglent Sds1204x E Firmware
OSSiglent6.1.37r9.ads
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
Related vulnerabilities
CVE-2023-25368HIGH7.5ten sam produkt
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS is vulnerable to Incorrect Access Control. An unauthenticated att...
CVE-2023-25369HIGH7.5ten sam produkt
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS is vulnerable to Denial of Service on the user interface triggere...
CVE-2023-25366CRITICAL9.8ten sam vendor
In Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS, insecure SCPI interface discloses web password.