Martem Telem-Gw6 Firmware vulnerabilities
4 known vulnerabilities affecting martem/telem-gw6_firmware.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-10603P2CRITICALCVSS 9.8≤ 2018.04.18-linux_4-01-601cb472018-07-31
CVE-2018-10603 [CRITICAL] CWE-306 CVE-2018-10603: Martem TELEM GW6 and GWM devices with firmware 2018.04.18-linux_4-01-601cb47 and prior do not perfor
Martem TELEM GW6 and GWM devices with firmware 2018.04.18-linux_4-01-601cb47 and prior do not perform authentication of IEC-104 control commands, which may allow a rogue node a remote control of the industrial process.
nvd
CVE-2018-10605P3HIGHCVSS 8.8fixed in 2.0.87-4018403-k42018-10-01
CVE-2018-10605 [HIGH] CWE-276 CVE-2018-10605: Martem TELEM GW6/GWM versions prior to 2.0.87-4018403-k4 may allow unprivileged users to modify/uplo
Martem TELEM GW6/GWM versions prior to 2.0.87-4018403-k4 may allow unprivileged users to modify/upload a new system configuration or take the full control over the RTU using default credentials to connect to the RTU.
nvd
CVE-2018-10607P3HIGHCVSS 7.5≤ 2018.04.18-linux_4-01-601cb472018-07-31
CVE-2018-10607 [HIGH] CWE-400 CVE-2018-10607: Martem TELEM GW6 and GWM devices with firmware 2018.04.18-linux_4-01-601cb47 and prior allow the cre
Martem TELEM GW6 and GWM devices with firmware 2018.04.18-linux_4-01-601cb47 and prior allow the creation of new connections to one or more IOAs, without closing them properly, which may cause a denial of service within the industrial process control channel.
nvd
CVE-2018-10609P4MEDIUMCVSS 6.1≤ 2018.04.18-linux_4-01-601cb472018-07-31
CVE-2018-10609 [MEDIUM] CWE-79 CVE-2018-10609: Martem TELEM GW6 and GWM devices with firmware 2018.04.18-linux_4-01-601cb47 and prior allow imprope
Martem TELEM GW6 and GWM devices with firmware 2018.04.18-linux_4-01-601cb47 and prior allow improper sanitization of data over a Websocket which may allow cross-site scripting and client-side code execution with target user privileges.
nvd