Optergy Enterprise vulnerabilities
8 known vulnerabilities affecting optergy/enterprise.
Total CVEs
8
CISA KEV
0
Public exploits
5
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH2MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2019-7276P1CRITICALCVSS 9.8ExploitedPoC≤ 2.3.0a2019-07-01
CVE-2019-7276 [CRITICAL] CVE-2019-7276: Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console.
Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console.
nvd
CVE-2019-7274P2CRITICALCVSS 9.8PoC≤ 2.3.0a2019-07-01
CVE-2019-7274 [CRITICAL] CWE-434 CVE-2019-7274: Optergy Proton/Enterprise devices allow Authenticated File Upload with Code Execution as root.
Optergy Proton/Enterprise devices allow Authenticated File Upload with Code Execution as root.
nvd
CVE-2019-7273P3HIGHCVSS 8.8PoC≤ 2.3.0a2019-07-01
CVE-2019-7273 [HIGH] CWE-352 CVE-2019-7273: Optergy Proton/Enterprise devices allow Cross-Site Request Forgery (CSRF).
Optergy Proton/Enterprise devices allow Cross-Site Request Forgery (CSRF).
nvd
CVE-2019-7272P3MEDIUMCVSS 5.3PoC≤ 2.3.0a2019-07-01
CVE-2019-7272 [MEDIUM] CWE-862 CVE-2019-7272: Optergy Proton/Enterprise devices allow Username Disclosure.
Optergy Proton/Enterprise devices allow Username Disclosure.
nvd
CVE-2019-7275P3MEDIUMCVSS 6.1PoC≤ 2.3.0a2019-07-01
CVE-2019-7275 [MEDIUM] CWE-601 CVE-2019-7275: Optergy Proton/Enterprise devices allow Open Redirect.
Optergy Proton/Enterprise devices allow Open Redirect.
nvd
CVE-2019-7279P3HIGHCVSS 7.3≤ 2.3.0a2019-07-01
CVE-2019-7279 [HIGH] CWE-798 CVE-2019-7279: Optergy Proton/Enterprise devices have Hard-coded Credentials.
Optergy Proton/Enterprise devices have Hard-coded Credentials.
nvd
CVE-2019-7278P3MEDIUMCVSS 6.5≤ 2.3.0a2019-07-01
CVE-2019-7278 [MEDIUM] CWE-269 CVE-2019-7278: Optergy Proton/Enterprise devices have an Unauthenticated SMS Sending Service.
Optergy Proton/Enterprise devices have an Unauthenticated SMS Sending Service.
nvd
CVE-2019-7277P4MEDIUMCVSS 5.3≤ 2.3.0a2019-07-01
CVE-2019-7277 [MEDIUM] CVE-2019-7277: Optergy Proton/Enterprise devices allow Unauthenticated Internal Network Information Disclosure.
Optergy Proton/Enterprise devices allow Unauthenticated Internal Network Information Disclosure.
nvd