Gessler Gmbh Web-Master vulnerabilities
2 known vulnerabilities affecting gessler_gmbh/web-master.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-1039P2CRITICALCVSS 9.8v7.92024-02-01
CVE-2024-1039 [CRITICAL] CWE-798 CVE-2024-1039: Gessler GmbH WEB-MASTER has a restoration account that uses weak hard coded credentials and if explo
Gessler GmbH WEB-MASTER has a restoration account that uses weak hard coded credentials and if exploited could allow an attacker control over the web management of the device.
nvd
CVE-2024-1040P4MEDIUMCVSS 4.4v7.92024-02-01
CVE-2024-1040 [MEDIUM] CWE-327 CVE-2024-1040: Gessler GmbH WEB-MASTER user account is stored using a weak hashing algorithm. The attacker can rest
Gessler GmbH WEB-MASTER user account is stored using a weak hashing algorithm. The attacker can restore the passwords by breaking the hashes stored on the device.
nvd