Franklinfueling Colibri Firmware vulnerabilities
2 known vulnerabilities affecting franklinfueling/colibri_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2021-46417P1HIGHCVSS 7.5ExploitedPoCv1.8.19.85802022-04-07
CVE-2021-46417 [HIGH] CWE-22 CVE-2021-46417: Insecure handling of a download function leads to disclosure of internal files due to path traversal
Insecure handling of a download function leads to disclosure of internal files due to path traversal with root privileges in Franklin Fueling Systems Colibri Controller Module 1.8.19.8580.
nvd
CVE-2022-44039P3CRITICALCVSS 9.8v1.9.22.89252022-12-05
CVE-2022-44039 [CRITICAL] CWE-863 CVE-2022-44039: Franklin Fueling System FFS Colibri 1.9.22.8925 is affected by: File system overwrite. The impact is
Franklin Fueling System FFS Colibri 1.9.22.8925 is affected by: File system overwrite. The impact is: File system rewrite (remote). ¶¶ An attacker can overwrite system files like [system.conf] and [passwd], this occurs because the insecure usage of "fopen" system function with the mode "wb" which allows overwriting file if exists. Overwriting file
nvd