Dover Fueling Solutions Progauge Maglink Lx4 Console vulnerabilities
6 known vulnerabilities affecting dover_fueling_solutions/progauge_maglink_lx4_console.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-45066P2CRITICALCVSS 9.8≤ 4.17.9e2024-09-25
CVE-2024-45066 [CRITICAL] CWE-77 CVE-2024-45066: A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP sub-menu can allow a remote
A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP
sub-menu can allow a remote attacker to inject arbitrary commands.
nvd
CVE-2024-43693P2CRITICALCVSS 9.8≤ 4.17.9e2024-09-25
CVE-2024-43693 [CRITICAL] CWE-77 CVE-2024-43693: A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a re
A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE
UTILITY sub-menu can allow a remote attacker to inject arbitrary
commands.
nvd
CVE-2024-43423P3CRITICALCVSS 9.8≤ 4.17.9e2024-09-25
CVE-2024-43423 [CRITICAL] CWE-259 CVE-2024-43423: The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account
The web application for ProGauge MAGLINK LX4 CONSOLE contains an
administrative-level user account with a password that cannot be
changed.
nvd
CVE-2024-43692P3CRITICALCVSS 9.8≤ 4.17.9e2024-09-25
CVE-2024-43692 [CRITICAL] CWE-288 CVE-2024-43692: An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full privil
An attacker can directly request the ProGauge MAGLINK LX CONSOLE
resource sub page with full privileges by requesting the URL directly.
nvd
CVE-2024-45373P3HIGHCVSS 8.8≤ 4.17.9e2024-09-25
CVE-2024-45373 [HIGH] CWE-269 CVE-2024-45373: Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administ
Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to administrator.
nvd
CVE-2024-41725P4MEDIUMCVSS 6.1≤ 4.17.9e2024-09-25
CVE-2024-41725 [MEDIUM] CWE-79 CVE-2024-41725: ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input fields that are used to ren
ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input
fields that are used to render pages which may allow cross site
scripting.
nvd