cbcvebase.

Dover Fueling Solutions Progauge Maglink Lx4 Console vulnerabilities

6 known vulnerabilities affecting dover_fueling_solutions/progauge_maglink_lx4_console.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH1MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2024-45066P2CRITICALCVSS 9.8≤ 4.17.9e2024-09-25
CVE-2024-45066 [CRITICAL] CWE-77 CVE-2024-45066: A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP sub-menu can allow a remote A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP sub-menu can allow a remote attacker to inject arbitrary commands.
nvd
CVE-2024-43693P2CRITICALCVSS 9.8≤ 4.17.9e2024-09-25
CVE-2024-43693 [CRITICAL] CWE-77 CVE-2024-43693: A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a re A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a remote attacker to inject arbitrary commands.
nvd
CVE-2024-43423P3CRITICALCVSS 9.8≤ 4.17.9e2024-09-25
CVE-2024-43423 [CRITICAL] CWE-259 CVE-2024-43423: The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed.
nvd
CVE-2024-43692P3CRITICALCVSS 9.8≤ 4.17.9e2024-09-25
CVE-2024-43692 [CRITICAL] CWE-288 CVE-2024-43692: An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full privil An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full privileges by requesting the URL directly.
nvd
CVE-2024-45373P3HIGHCVSS 8.8≤ 4.17.9e2024-09-25
CVE-2024-45373 [HIGH] CWE-269 CVE-2024-45373: Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administ Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator.
nvd
CVE-2024-41725P4MEDIUMCVSS 6.1≤ 4.17.9e2024-09-25
CVE-2024-41725 [MEDIUM] CWE-79 CVE-2024-41725: ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input fields that are used to ren ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input fields that are used to render pages which may allow cross site scripting.
nvd
Dover Fueling Solutions Progauge Maglink Lx4 Console vulnerabilities | cvebase