MidnightBSD

Advisories for entes

CVE-2018-14822 HIGH

Entes EMG12 versions 2.57 and prior an information exposure through query strings vulnerability in the web interface has been identified, which may allow an attacker to impersonate a legitimate user and execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-598,CWE-200,

Products Affected

Vendor Product Version
entes emg-12_firmware *
CVE-2018-14826 HIGH

Entes EMG12 versions 2.57 and prior The application uses a web interface where it is possible for an attacker to bypass authentication with a specially crafted URL. This could allow for remote code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,CWE-20,

Products Affected

Vendor Product Version
entes emg-12_firmware *