Mcl-Collection Mcl-Net Firmware vulnerabilities
2 known vulnerabilities affecting mcl-collection/mcl-net_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-34834P3MEDIUMCVSS 5.3PoCv4.3.5.87882023-06-29
CVE-2023-34834 [MEDIUM] CWE-552 CVE-2023-34834: A Directory Browsing vulnerability in MCL-Net version 4.3.5.8788 webserver running on default port 5
A Directory Browsing vulnerability in MCL-Net version 4.3.5.8788 webserver running on default port 5080, allows attackers to gain sensitive information about the configured databases via the "/file" endpoint.
nvd
CVE-2023-4990P3HIGHCVSS 7.5fixed in 4.6.0.302102023-10-11
CVE-2023-4990 [HIGH] CWE-22 CVE-2023-4990: Directory traversal vulnerability in MCL-Net versions prior to 4.6 Update Package (P01) may allow at
Directory traversal vulnerability in MCL-Net versions prior to 4.6 Update Package (P01) may allow attackers to read arbitrary files.
nvd