HIGH🇵🇱 Wersja polska

CVE-2024-27769

CVSS 8.8v3.1pub. 2024-03-18upd. 2025-03-10

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor may allow Taking Ownership Over Devices

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Unitronics Unilogic

    APP
    Unitronics
    < 1.35.227
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-27767CRITICAL10.0PL ✓ten sam produkt

Pominięcie uwierzytelnienia w Unitronics Unilogic (Authentication Bypass)

CVE-2024-27768CRITICAL9.8PL ✓ten sam produkt

Path Traversal w Unitronics Unilogic umożliwiający RCE

CVE-2024-27770HIGH8.8ten sam produkt

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-23: Relative Path Traversal

CVE-2024-27771HIGH8.8ten sam produkt

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE

CVE-2024-27772HIGH8.8ten sam produkt

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may allow RCE