Pepperl-Fuchs Wha-Gw-F2D2-0-As Z2-Eth.Eip Firmware vulnerabilities

CVE-2021-33555 [HIGH] CWE-22 CVE-2021-33555: In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.7 the filename parameter is vulnerable to unauthenticat In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.7 the filename parameter is vulnerable to unauthenticated path traversal attacks, enabling read access to arbitrary files on the server.

CVE-2021-34564 [MEDIUM] CWE-315 CVE-2021-34564: Any cookie-stealing vulnerabilities within the application or browser would enable an attacker to st Any cookie-stealing vulnerabilities within the application or browser would enable an attacker to steal the user's credentials to the PEPPERL+FUCHS WirelessHART-Gateway 3.0.9.