Circontrol Circarlife Firmware vulnerabilities
2 known vulnerabilities affecting circontrol/circarlife_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2018-17918P2CRITICALCVSS 9.8fixed in 4.3.12018-11-02
CVE-2018-17918 [CRITICAL] CWE-288 CVE-2018-17918: Circontrol CirCarLife all versions prior to 4.3.1, authentication to the device can be bypassed by e
Circontrol CirCarLife all versions prior to 4.3.1, authentication to the device can be bypassed by entering the URL of a specific page.
nvd
CVE-2018-17922P3CRITICALCVSS 9.8fixed in 4.3.12018-11-02
CVE-2018-17922 [CRITICAL] CWE-522 CVE-2018-17922: Circontrol CirCarLife all versions prior to 4.3.1, the PAP credentials of the device are stored in c
Circontrol CirCarLife all versions prior to 4.3.1, the PAP credentials of the device are stored in clear text in a log file that is accessible without authentication.
nvd