Entes EMG12 versions 2.57 and prior an information exposure through query strings vulnerability in the web interface has been identified, which may allow an attacker to impersonate a legitimate user and execute arbitrary code.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-598,CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| entes | emg-12_firmware | * |
Entes EMG12 versions 2.57 and prior The application uses a web interface where it is possible for an attacker to bypass authentication with a specially crafted URL. This could allow for remote code execution.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-287,CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| entes | emg-12_firmware | * |